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R ecent years have seen an explosive growth of the Internet. When the 
Internet passed from government and academic realms to the public sec- 
tor, it brought along a laissez-faire attitude about security. Its explosive 
growth, flaws in its basic structure, its facilitation of instant access to infor- 
mation repositories, and its widespread availability has made it increasingly 
vulnerable. There have been many malicious attempts, or attacks to exploit this 
vulnerability of the Internet from all over the world; the attacks on the Internet 
have kept pace with the growth of the Internet. 

The natural instinct of individuals, organizations, and nations to protect 
themselves against attacks and operational intrusions or upsets in the flow of 
information has spawned a high level of interest, research activity, and tech- 
nological developments in the Internet security field. New security protocols, 
and new countermeasures against attacks that break, slow, or inconvenience 
users and organizations are evolving every day. These developments constantly 
introduce new terms and concepts into the Internet security vocabulary. Al- 
though nascent, the field has gained sufficient maturity that its vocabulary can 
begin to be standardized for common use by professionals. This dictionary is 
an effort to organize and define these terms precisely and coherently. 


PURPOSE AND SCOPE 

The purpose of this dictionary is to provide reliable definitions and descrip- 
tions of Internet security terms in clear and precise English. Designed as a tool 
to bring about a common understanding of technical terms to the lay user and 
the professional, the dictionary will serve as an introduction to Internet security 
for the nonprofessional user who is looking for the precise meaning(s) of a 
specific term or for a cursory overview of the field. This dictionary should also 
serve as a reference for the security professional who is an expert in a specialized 



area and who may need to refer to precise or commonly accepted meanings of 
terms. 

The terms collected in this dictionary are those used by researchers, design- 
ers, developers, manufacturers, vendors, system administrators, and other users 
of Internet security technology. These terms were taken primarily from the 
technical literature, including journal articles and magazines, books, and Re- 
quests for Comments (RFCs). 

This dictionary covers eight main areas: (1) authentication, including 
biometrics, encryption/ public key infrastructure, digital signatures, time- 
stamping, and certificate management; (2) encryption; (3) network-level se- 
curity, including IP, IPsec, SHTTP, and SSL; (4) firewalls and remote man- 
agement; (5) Internet security policies, risk analysis, integration across 
platforms, management and auditing; (6) mobile code security, Java/ Active 
X/ scripts, and mobile agent code; (7) virus protection and intrusion detec- 
tion; and (8) security in Internet commerce. Since the TCP/IP protocol is 
at the heart of Internet routing, this dictionary contains many terms related 
to server processes, TCP/IP, and routing as well. 

FEATURES 

This dictionary addresses all major aspects of Internet security technology, 
provides detailed definitions and illustrations where required for clarity, gives 
cross-references for easy backtracking of terms, and lists each acronym as a 
separate entry with a reference to the full term it identifies. The accompanying 
CD-ROM version contains a searchable PDF version of the complete dictio- 
nary. Viewing the PDF file requires that the Adobe Acrobat Reader be installed 
on the computer. The Adobe Acrobat Reader can be downloaded free of cost 
from the Adobe Web site, http:/ /www.adobe.com. 

REVIEW PROCESS 

Security experts from around the world have been consulted in both the 
content and the organization of the dictionary to ensure authoritative, compre- 
hensive coverage. A distinguished board of experts drawn from academia, in- 
dustry, and government has reviewed the selected list of terms for comprehen- 
siveness, and the description of each term for accuracy and usefulness. This board 
has been carefully chosen to represent eminent researchers and leaders in Internet 
security, computer science, engineering applications, and a broad spectrum of 
Internet users for specialized technology developments and everyday activity. 



I plan to keep the contents of the dictionary up-to-date. Please send sug- 
gestions to include important new Internet security terms or comments for 
improvement to phoha@acm.org. 
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ORGANIZATION 
AND USAGE 


ORGANIZATION OF THE DICTIONARY 

We have tried to make the organization of this dictionary clear and self- 
explanatory, but a few guidelines may help the reader. This dictionary contains 
terms, arranged in a strict alphabetical word order, ignoring capital letters, hy- 
phens, slashes, and other forms of punctuation in the sequencing. Numbers are 
ordered before the letters; thus A1 comes before Ab. Each term is followed by 
a description. The descriptive text is written in American English. If a term has 
more than one meaning, each is indicated by a number in parentheses, the most 
common meaning being shown first. 

Each acronym is listed as a separate entry with a reference(s) to the full 
term(s) it identifies. Entries or organizations referred to in the description that 
relate only to the United States are followed in the text by (U.S.). 

Some terms contain cross-references. If a cross-referenced term is defined 
elsewhere in the dictionary, it is italicized. An example follows: 

Term Beyond A1 

Description Determines a level of trust defined by the DoD TRUSTED COMPUTER 

System Evaluation Criteria (U.S.) to be beyond the state-of-the- 
art technology. Includes all the A 1 -level features plus additional 
ones not required at the A 1 -level. See also the ORANGE Book. 

Some terms in the dictionary cross-refer to other terms and parts of the 
dictionary. A description of the terminology used for cross-references follows. 

See also refers to another entry with a related or similar meaning, or to a term 
that has additional information. Other cross-references point to figures, ap- 
pendixes, and notes in the dictionary. Figures explain or add to the description 
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of a term and follow or are contained in the description of a term. Notes 
contain additional information relevant to the term. Each Note follows the 
entry for the term it treats. Many entries refer to the RFCs given in an appendix 
or to citations in the Bibliography. 

The following terminology explains the notation used to refer to figures and 
notes: 

See Figure A5 refers to the fifth figure in the section of words starting with 
the letter A. If the figure is referred to from another term, then the name of 
the term that contains the figure is enclosed in parentheses following the term: 
See Figure C3 (term). 

See Note refers to the note corresponding to the term given in the dictionary. 
If the note is referred to from another term, then the name of the term that 
contains the note is enclosed in parentheses following the term: See Note (hacker). 

An example follows. 

bespoke A product or service that is custom made or tailored to individual needs. 
Also called custom-designed software. See also COTS. 

NOTE (1) Bespoke is pronounced bee-SPOHK and is more commonly used in the United 
Kingdom. In the U.S. custom-made or custom-designed software is more common. 
Traditionally bespoke is applied to custom- tailored clothing, but the usage has been extended 
to information technology. Example usage: Dreamware software company offers bespoke 
software. (2) Bespoke is a derivation from the word bespeak, which means ordering of goods; 
this usage of bespeak can be traced back to 1583. 
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A1 The National Computer Security Cen- 
ter (NCSC) of the U.S. Department of De- 
fense has published TRUSTED COMPUTER SYSTEM 

Evaluation Criteria (DoD 5200.28-STD, 
also referred to as the ORANGE Book. The 
ORANGE Book defines a series of security 
ratings such as Al, B2, B3, Cl, C2, and D. 
Here is a brief explanation of the ratings: 

D: Minimal Protection. This rating is given 
to systems that do not qualify for higher 
ratings. Cl: DISCRETIONARY SECURITY PROTEC- 
TION. Requirements correspond roughly to 
those expected from a classical time- 
sharing system. C2: CONTROLLED ACCESS PRO- 
TECTION. Additional requirements for C2 
are access control at a per user granularity, 
clearing of allocated memory, and auditing. 
Bl: Labeled Security Protection. Additional 
requirements over C2 are security labels. 
B2: Structured Protection. Additional re- 
quirements of B2 over Bl include a trusted 
path to the user, notification of security- 
level changes to the user when a process 
started by the user changes its security 
level. The OS should be structured so that 
only a minimal portion of it is security 
sensitive. COVERT CHANNELS must be identi- 
fied and their bandwidth estimated. 


B3: Security Domains. Additional require- 
ments involve the absence of bugs in the 
operating system that would allow the cir- 
cumvention of MANDATORY ACCESS 

controls. Al: Verified Design has the 
highest level of trust defined in the OR- 
ANGE Book and contains formal proce- 
dures for the analysis of the system’s de- 
sign and rigorous controls on its 
implementation. 

A5 A GSM standard for digital cellular 
mobile telephones. A5 is a stream cipher 
with 64-bit keys that is used to ENCRYPT a 
link from the telephone to the base station. 
See also GSM. 

Abstract Syntax Notation 1 An ISO 

standard for data representation and data 
structure definitions. More details of AB- 
STRACT Syntax Notation 1 (ASN.l) may be 
obtained from http:/ / www.asnl.org/. 

access The opportunity to make use of a 
resource such as a database, a program, or 
a module; a part of memory; or any infor- 
mation system (IS) resource. 

access control Governs direct access to 
information resources according to security 
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requirements. Access control consists of 
(1) high-level access policies and rules that 
define permitted access and (2) control pro- 
cedures (security mechanisms) implement- 
ing these policies. 

access control list (1) A data structure 
associated with a resource (object) that 
specifies the users (subjects) and their rights 
on this resource. ACCESS CONTROL LIST (ACL) 
is different from a CAPABILITY. (2) In an 
object-oriented system, an ACL describes 
how other objects can relate to its objects, 
whereas CAPABILITY describes how this object 
can relate to other objects. 

access control mechanism A security 
safeguard that enforces security rules and 
policies to prevent unauthorized access to 
system resources while permitting author- 
ized accesses. Requiring a user ID and 
password to log on to a computer system 
is an example of an ACCESS CONTROL MECHA- 
NISM. 

access control set A synonym for AC- 
CESS CONTROL LIST. 

access level Used to label the sensitivity 
of data and resources. Secrecy and integrity 
levels are combined to form a label (S, I), 
where S defines the sensitivity level and I 
the integrity level. For example, SeaView 
Model uses access level to implement 
both BLP and Biba security models. The 
hierarchical portion of the security level is 
used to identify the sensitivity of IS data 
and the CLEARANCE or AUTHORIZATION of 
users. Access level, in conjunction with 
the nonhierarchical categories, forms the 
sensitivity label of an object. See also CATE- 
GORY. 

access list Refers to a compilation of 
users, programs, or processes and the access 
levels and types to which each is authorized. 

access mode access type. 


access period A segment of time, gen- 
erally expressed in days or weeks, during 
which access rights prevail. 

access profile Associates each user with 
a list of protected objects the user may ac- 
cess. 

access type The type of action [opera- 
tion] that is permitted on an object. Read, 
write, execute, append, modify, delete, and 
create are examples of access types. 

accessible space The area within which 
the user is aware of all persons entering 
and leaving. This area denies the opportu- 
nity for concealed TEMPEST surveillance, 
and delineates the closest point of poten- 
tial TEMPEST intercept from a vehicle. See 
also INSPECTABLE SPACE. 

accountability The process allowing for 
the auditing of IS activities to be traced to 
a source that may then be held responsible. 

accounting legend code The numeric 
code used to indicate the minimum ac- 
counting controls required for items of 
accountable COMSEC MATERIAL within the 
COMSEC MATERIAL CONTROL SYSTEM. 

accounting number A number assigned 
to an item of COMSEC MATERIAL to facili- 
tate its control. 

accreditation The formal declaration by 
a DESIGNATED APPROVING AUTHORITY (DAA) 
that approval is given for an IS to be oper- 
ated in a particular security mode using a 
prescribed set of safeguards. ACCREDITATION 
is given only when the DAA judges that the 
associated level of risk is acceptable. 

accreditation package A product com- 
prising a System Security Plan (SSP) and a 
report documenting the basis for the AC- 
CREDITATION decision. 

accrediting authority Synonymous with 
DESIGNATED APPROVING AUTHORITY (DAA). 
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accuracy A security principle that keeps 
information from being modified or other- 
wise corrupted, either maliciously or acci- 
dentally. ACCURACY protects against forgery 
or tampering. See also INTEGRITY. 

ACL ACCESS CONTROL LIST. 

active Denotes something that requires 
action on the part of the user as opposed 
to no action (passive). The use of ACTIVE is 
common in a security context, for example, 
a security alarm that requires a user to turn 
it on is an ACTIVE restraint, whereas an air- 
bag in a car is a PASSIVE restraint. 

active attack A type of attack that in- 
volves altering a system’s status or content, 
for example, changing the contents of a file 
or adding additional files, in contrast to a 
PASSIVE ATTACK like browsing. 

active threat A type of threat that in- 
volves the alteration — not simply the in- 
terception — of information. For example: 
an active tap is a type of wiretapping that 
accesses and COMPROMISES data, usually by 
generating false messages or control signals, 
or by altering communications between le- 
gitimate users. The danger of an ACTIVE 
THREAT is primarily the authenticity of the 
information being transmitted. Contrast 
with PASSIVE THREAT. 

add-on security Hardware, software, or 
firmware mechanisms that can be incorpo- 
rated into an already operational IS to pro- 
vide new security benefits. Synonyms in- 
clude retrofittable security and insertible 
security. 

address mask Also called netmask. A 
bit mask used to select bits from an IPv4 
Internet address for subnet addressing. The 
mask is 32 bits long and selects the net- 
work portion of the Internet address and 
one or more bits of the local portion. 
Sometimes called a SUBNET MASK. In Figure 


Al, the host address 138.47.18.156 is 
bitwise ANDed with the SUBNET MASK 
255.255.255.0 to get the subnet address 
138.47.18.0. Subnetting allows a single 
network address to be shared among multi- 
ple subnets, each of which may be a physi- 
cally distinct network. The number of sub- 
nets depends upon the choice of ADDRESS 
MASK. All hosts on a subnet are configured 
with a same mask. See also SUBNET MASK. 

administrative security The manage- 
ment of rules and procedures that result 
in the protection of a computer system 
and its data. Sometimes called PROCEDURAL 
SECURITY. 

address resolution A means for map- 
ping a network layer address onto a media- 
specific address, for example, mapping an 
IP address to an Ethernet or token ring 
address. 

Address Resolution Protocol The In- 
ternet PROTOCOL used to dynamically map 
Internet address to physical address on lo- 


32 bits 


Host Address 
e.g., 138.47.18.156 
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nn ... 1 1 1 1 1 1 

00 ... 00 

Subnet Mask: 255.255.255.0 

24 bits 
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Address Part 

Part 

138.47.18 
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Network Address: 138.47.18.0 


FIGURE Al . Use of an address mask to get a subnet 
address. 
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cal area networks. It is limited to networks 
that support hardware broadcast. 

NOTE: RFC 826 outlines the details to convert 
network protocol addresses to 48-bit Ethernet ad- 
dresses for transmission on 10 Mbit ETHERNET 
hardware. Generalization of this protocol to hardware 
other than 10 Mbit ETHERNET have also been 
made. 

Advanced Encryption Standard A new 

U.S. government encryption standard that 
supercedes DES. The ADVANCED ENCRYPTION 
STANDARD (AES) specifies the Rijndael algo- 
rithm with key sizes of 128, 192, and 256 
bits and a block size of 128 bits. 

Advanced Research Project Agency 

Currently called DARPA. The U.S. govern- 
ment agency that funded the ARPANET. See 
also Defense Advanced Research Projects 
Agency. 

adversary (1) A person or organization 
who is an opponent, competitor, or an en- 
emy who may want to destroy or disable 
an (your) IS and who must be denied AC- 
CESS to information. (2) Someone who is 
trying to thwart a security system. 

advisory The assessment of significant 
new trends or developments regarding the 
threat to the IS of an organization. This 
assessment may include analytical insights 
into trends, intentions, technologies, or tac- 
tics of adversaries. Examples include CERT 
advisories. See also CERT. 

AES Advanced Encryption Standard. 

AFIWC ■*' Air Force Information War- 
fare Center. 

Air Force Information Warfare Center 

The U.S. Air Force Information Warfare 
Center (AFIWC) was activated on Septem- 
ber 10, 1993, to meet the need created by 
the growing importance of information 
warfare. It was created to be “an informa- 


tion superiority center of excellence de- 
voted to offensive and defensive counter- 
information and information operations.” 
(It has existed under various names since 
1953; see note below.) It draws on the 
technical strength from the former Air 
Force Electronic Warfare Center, the Air 
Force Cryptologic Support Center’s Securi- 
ties Directorate, and Air Force Intelligence 
Command. Its mission is to “explore, ap- 
ply, and migrate offensive and defensive in- 
formation warfare capabilities for opera- 
tions, acquisition and testing, and provide 
advanced information warfare training for 
the Air Force.” See http:/ /www.aia.af.mil/ 
common/homepages/ pa/ cyberspokesman/ 
jan/ atc3.htm. 

NOTE: The AFWIC has had many name changes. 

In July 1953 AFIWC wasfrst activated as the 
6901st Special Communication Center. In August 1 
953 it was renamed the Air Force Special Commu- 
nication Center and in 1915 it was redesignated the 
Air Force Electronic Wafare Center. 

ALC •V' ACCOUNTING LEGEND CODE. 

alert Generally refers to a notification 
of a computer-based threat or an attack di- 
rected at the IS of an organization, 

alternative COMSEC custodian Person 
or a group designated to perform the du- 
ties of the COMSEC CUSTODIAN during 
his/her temporary absence. 

American National Standards Institute 

One of several U.S. organizations that de- 
velop standards including those for com- 
puter networking and security. 

American Standard Code for Informa- 
tion Interchange A mapping between 
text characters and binary numbers. See also 

EBCDIC. 

NOTE: UNIX and DOS-based OPERATING 
SYSTEMS , except Windows NJ , use the AMERI- 
CAN Standard Code for Information 
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Interchange (ASCII) for text files. Windows 
NT uses UNICODE. 

ankle-biter A person with limited 
knowledge or expertise related to comput- 
ers or information sciences who wants to 
hack into systems, for example, those who 
use programs downloaded from the INTER- 
NET to break into systems. Also known as 
SCRIPT KIDDIE. 

anomaly detection model A model of 
intrusion detection characterized by recog- 
nizing deviations from the normal behavior 
(anomalous) of a process or a network. Ex- 
amples of anomalies include slow response 
despite light system load, frequent ACCESS 
to specific files, and unusual combinations 
of system calls. 

anonymous electronic cash Electronic 
cash that does not leave a trail to the per- 
son who spent it. 

ANSI American National Standards 
Institute. 

antijam Measures to ensure communica- 
tions despite deliberate attempts to jam the 
transmitted information. 

antispoof Measures and techniques to 
prevent an opponent masquerading as a 
different identity or machine. 

API APPLICATION PROGRAM INTERFACE. 

applet A “small application” that is a 
Java program that runs on a browser. The 
Java model imposes certain security restric- 
tions on applets, including inability to read 
or write to the local file system and to 
open network connections to any system 
other than the host from which the APPLET 
was downloaded. 

application layer The topmost layer in 
the TCP/IP model, providing application 
protocols for services like electronic mail, 


file transfer, and remote terminal connec- 
tion. 

application program interface A set 

of calling conventions defining how a ser- 
vice is invoked through a software package. 

ARP Address Resolution Protocol. 

ARPA Advanced Research Project 

Agency. 

ARPANET A packet-switched NETWORK 
developed in the early 1970s that was the 
primary demonstration of networking com- 
puter systems. ARPANET was decommis- 
sioned in June 1990. The present INTERNET 
evolved from ARPANET. 

ASCII American Standard Code for 
Information Interchange. 

ASN. 1 Abstract Syntax Notation 1 . 

assurance information assurance. 

asymmetric cryptography A crypto- 
graphic system where ENCRYPTION and DE- 
CRYPTION are performed using different 
keys. These schemes use two mathemati- 
cally related keys. The DECRYPTION key is 
hard to determine from the encryption key. 
An ENCRYPTION key, or PUBLIC KEY, is made 
known, but the decryption key, or private 
key, is kept secret. Encryption and decryp- 
tion are two mathematical functions that 
are inverses of each other. Also called PUB- 
LIC KEY CRYPTOGRAPHY. See Figure A2. See also 
SECRET KEY CRYPTOGRAPHY. 

Athena A project conducted at the Mas- 
sachusetts Institute of T echnology that de- 
veloped a number of interesting technolo- 
gies, including the KERBEROS cryptographic 
authentication system. 

attack An unauthorized intentional act 
on a computer, a NETWORK, or an IS with 
malicious intent. 
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FIGURE A2 . Asymmetric key encryption. 


attention character In trusted comput- 
ing BASE (TCB) design, a character entered 
from a terminal that tells the TCB that the 
user wants a secure communications path 
from the terminal to some trusted code to 
provide a secure service for the user. 

audit To examine a record of events that 
might have some security significance such 
as when ACCESS to resources occurred. 

audit log ■*“ audit trail. 

audit record ■*" audit trail. 

audit trail The chronological record of 
system activities, used to enable the recon- 
struction and examination of the sequence 
of events and/ or changes in an event. 

authenticate To determine that some- 
thing is genuine. In the context ol INTERNET 
security, to reliably determine the identity 
of an individual or communicating party 
(peer entity authentication) or the source 
of a message (data origin authentication). 

authentication The process of 
reliably determining the identity of a 
communicating party or the source of a 
message. 


authentication header A field that pro- 
vides integrity and AUTHENTICATION checks 
in an INTERNET PROTOCOL packet format. 

authentication system The cryptosys- 
tem or process used for AUTHENTICATION. 

authenticator (1) Used to confirm the 
identity of a station, originator, or individ- 
ual. It can be something the user has, e.g., 
a smart card or DONGLE; something the user 
knows, e.g., a password or challenge re- 
sponse; or a physical characteristic ol the 
user, e.g., fingerprint or a retina scan. (2) A 
field in a message used to establish its 
source. 

authenticity A security principle that en- 
sures that a message is received in exactly 
the form in which it was sent. See also MES- 
SAGE AUTHENTICATION CODE. 

authorization Permission to ACCESS a 
resource. 

authorized vendor The manufacturer 
of INFOSEC equipment authorized to pro- 
duce quantities in excess of contractual re- 
quirements for direct sale to eligible buy- 
ers. Eligible buyers are typically U.S. 
government organizations or U.S. govern- 
ment contractors. See also AUTHORIZED VEN- 
DOR Program. 

Authorized Vendor Program Program 
in which a vendor producing an INFOSEC 
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FIGURE A3 . An example of a network with two au- 
tonomous systems, AS1 and AS2. 


product under contract to the NATIONAL SE- 
CURITY Agency (U.S.) is authorized to pro- 
duce that product in numbers exceeding 
the contracted requirements for direct mar- 
keting and sale to eligible buyers. Eligible 
buyers are typically U.S. government orga- 
nizations or U.S. government contractors. 
Products approved for marketing and sale 
through the AUTHORIZED VENDOR PROGRAM 
are placed on the Endorsed Cryptographic 
Products List. 

auto-manual system Programmable, 
hand-held CRYPTO-EQUIPMENT used to per- 
form ENCODING and DECODING functions. 

automated security monitoring The 

use of automated procedures to ensure that 
security controls are not circumvented. Also, 
the use of these tools to track actions taken 
by subjects suspected of misusing an IS. 


automatic home agent discovery 

Process by which a mobile node obtains 
the address of a home agent on its home 
NETWORK. This process requires the trans- 
mission of a registration request to the 
subnet broadcast address of its home 
NETWORK. 

automatic remote rekeying A proce- 
dure to rekey a distant CRYPTO-EQUIPMENT 
electronically without specific actions by 
the receiving terminal operator. 

autonomous system Internet (TCP/IP) 
terminology for a collection of gateways 
(routers) that fall under one administrative 
entity and cooperate using a common Inte- 
rior Gateways Protocol. In Figure A3, R 
denotes a router, for example, R1 is router 
1, and H denotes a host, for example, HI 
denotes host 1. 

availability Timely, reliable ACCESS to 
data and information services for author- 
ized users. 
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backbone The primary mechanism con- 
necting a hierarchical distributed system. 

All systems that are connected to an inter- 
mediate system on the backbone are as- 
sured of being connected to each other. 
This mechanism does not prevent systems 
from setting up private arrangements with 
each other to bypass the backbone for rea- 
sons of cost, performance, or security. 

back door Synonymous with TRAP DOOR. 

background authentication Authenti- 
cation that takes place automatically “in 
the background” when a user requests a 
service. The user does not have to do any- 
thing explicitly to obtain AUTHENTICATION. 

backup Copies of files, data, and pro- 
grams made to facilitate recovery from fail- 
ures of primary system. 

banner Display on a computer screen, 
printout, or an IS that shows parameters 
for system or data use. 


baseband Descriptive characteristic of 
any network technology that uses a single 
carrier frequency and requires all stations 
attached to the NETWORK to participate in 
every transmission. Contrast with BROAD- 
BAND. 

bastion host A FIREWALL host, which acts 
as an interface point to an external un- 
trusted network. BASTION HOSTS are critical 
to an organization’s security. Because BAS- 
TION HOSTS act as an interface point to 
the outside world, they are often subject to 
INTRUSION. 

Bell-LaPadula security model An ac- 
cess CONTROL model that aims to protect 
information CONFIDENTIALITY. ACCESS CON- 
TROL rules (axioms) are expressed in terms 
of information (object) CLASSIFICATION, 
called data sensitivity, and subject authori- 
zations, called subject clearance. Informa- 
tion is allowed to flow from low security 
level to high security level but not in the 
opposite direction. See also STAR (*) PROPERTY 
and SIMPLE SECURITY PROPERTY. 

benign data Condition of CRYPTOGRAPHIC 
data that cannot be COMPROMISED by human 
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ACCESS. Data that, because it has been en- 
crypted, is no longer sensitive, and cannot 
be COMPROMISED by eavesdropping. It may 
also be data that does not contain any vi- 
ruses or other malicious code. 

benign environment An environment 
that is not hostile and may be protected 
from external hostile elements by physical, 
personnel, and procedural security COUN- 
TERMEASURES. 

bespoke A product or service that is 
custom made or tailored to individual 
needs. Also called custom-designed soft- 
ware. See also COTS. 

NOTE: 0) BESPOKE is pronounced bee-SPOHK 
and is more commonly used in the United Kingdom. 

In the US. custom-made or custom-designed software 
is more common. Traditionally bespoke is applied to 
custom-tailored clothing, but the usage has been ex- 
tended to information technology. Example usage: 
Dreamware software company offers BESPOKE soft- 
ware. (2) BESPOKE is a derivation from the word 
bespeak, which means ordering of goods; this usage of 
bespeak can be traced back to IS S3. 

beyond A 1 Indicates a level of trust de- 
fined by the DoD Trusted COMPUTER SYSTEM 
Evaluation Criteria beyond the state-of-the- 
art technology. Includes all the A 1 -level 
features plus additional ones not required 
at the A 1 level. See also A 1 and the ORANGE 

Book. 

Bibo model An ACCESS CONTROL model 
that aims to protect integrity of informa- 
tion resources against unauthorized modifi- 
cations. ACCESS rights are described in 
terms of integrity levels of subjects (pro- 
cesses acting in behalf of the users) and 
objects (information resources). Informa- 
tion is allowed to flow from high integrity 
object to low integrity object but not in 
the opposite direction. 

binding Used in many senses; two of the 
most common are (1) associating an IP ad- 


dress with a machine name, (2) association 
expressed in a CERTIFICATE between a public 
key and an identity. Binding also refers to 
a process of associating a specific commu- 
nications terminal with a specific CRYPTO- 
GRAPHIC key or associating two related ele- 
ments of information. 

biometric device A device that authenti- 
cates people using BIOMETRICS. 

biometrics (1) Identification or authenti- 
cation mechanisms that rely on the mea- 
surement of an anatomical, physiological, 
or behavioral characteristic of the user, 
rather than knowledge or possession of in- 
formation or a key. (2) Method by which 
a personal characteristic such as a finger- 
print, iris print, voiceprint, or face print is 
used to confirm the user’s identity. 

Block (1) Refers to information that is 
not sensitive, or no longer sensitive because 
it has been encrypted. (2) Designates areas 
or systems where national security informa- 
tion is not processed. For example, infor- 
mation systems and associated areas, cir- 
cuits, components, and equipment in which 
national security information is not pro- 
cessed. See also RED. 

block encryption Scrambling, in a re- 
versible manner, a fixed-size block of PLAIN- 
TEXT to generate a fixed-size block of CIPHER- 
TEXT. If the total PLAINTEXT exceeds the block 
size, it is first broken into blocks. If the 
size of total PLAINTEXT or the remainder of 
the PLAINTEXT after division into blocks is 
less than the block size, it must be padded. 

boot sector virus A virus that overrides 
the boot sector, therefore making it appear 
as if there is no pointer to the operating 
system. The usual message that appears at 
power up is “Missing Operating System” 
or “Hard Disk Not Found.” 
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bot A short form of “robot,” it refers to 
a program that performs some services for 
a user. Two examples of a bot are (1) shop- 
bots that search the Web on behalf of a 
user to find products, best price for a 
product, etc., (2) chatterbots that simulate 
talk with human beings. 

On the Web, a first part of a search en- 
gine, usually called a spider or crawler, that 
automatically searches the Web to find 
pages and updates its database of informa- 
tion about old Web sites. 

boundary (1) A boundary is the border 
that distinguishes a system from its envi- 
ronment. (2) A physical, software, or hard- 
ware barrier that limits ACCESS to a system 
or part of a system. 

bridge A node connected to two or more 
(administratively indistinguishable but phys- 
ically distinct) subnets that automatically 
forwards DATAGRAMS when necessary but 
whose existence is not known to other 
hosts. See Figure Bl. Bridges can usually be 
made to filter packets, that is, to forward 
only certain traffic. See also REPEATER, ROUTER. 

broadband Descriptive of a network 
that multiplexes multiple, independent net- 
work carriers onto a single cable, allowing 



FIGURE B 1 . An example of a BRIDGE connecting 
LAN A and LAN B. 


several networks to coexist on a single ca- 
ble. This action is usually done using fre- 
quency division multiplexing (FDM). 
Traffic from one network does not inter- 
fere with traffic from another, since the 
communication happens on different fre- 
quencies in the medium, a setup that re- 
sembles the commercial radio system. 

broadcast (1) A packet delivery system 
in which a copy of a given packet is sent 
to all hosts attached to the network. (2) A 
transmission that does not address an indi- 
vidual recipient specifically. 

browsing (1) Searching or looking 
through web sites. (2) An act of searching 
through IS storage to locate or acquire in- 
formation, without necessarily knowing the 
existence or format of the information be- 
ing sought. 

BSD Berkeley Software Distribution. 
Term used in describing different versions 
of the Berkeley variety of the UNIX operat- 
ing system, as in 4.3 BSD UNIX. 

bucket brigade attack An attack that 
is inserted between two legitimate users, re- 
laying their messages to each other, and 
thereby SPOOFING each of them into think- 
ing they are talking directly to the other. 

buffer overflow A very common vul- 
nerability of programs and systems. BUFFER 
OVERFLOW happens when input or interme- 
diate results exceed the buffer size. Delib- 
erate inputs that result in BUFFER OVERFLOW 
may result in gaining root-level ACCESS to 
system or in system crashes. Many pro- 
gramming languages such as C and C++ 
do not check for the violation of array 
boundaries into which information is being 
copied. For example, gets, strcat, and strcpy do 
not check the buffer length, so if the input 
length is greater than the buffer length, a 
BUFFER OVERFLOW results. 
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bug A flaw or an unintentional error in 
the functioning of a program, system, or 
piece of hardware equipment, 

bulk encryption Encryption of all chan- 
nels of a telecommunications link at the 
same time. This can also be achieved by 
encrypting the output of a multiplexed 
communications over a link. 

Byzantine fault A general system fault 
model inspired by the Byzantine Generals 


Problem [NL96]. It is a pessimistic model, 
allowing components (systems) to fail in 
coordination in the least favorable way. 
This model allows components to fail in 
an arbitrary manner. Systems designed to 
tolerate these faults are robust. 

BYZANTINE fault models are characterized 
by systems that can produce erroneous in- 
puts for decisions (control) and are useful 
in designing systems that are fault tolerant 
when some components may produce erro- 
neous results. 
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Cl ■*- Al. 

C2 Al. 

C2W COMMAND AND CONTROL 

WARFARE. 

CA CERTIFICATION AUTHORITY. 

CAP ■*" CONTROLLED ACCESS POINT. 

call back A security mechanism of 
redial-in connections to a network whereby 
users call in, identify, request a connection, 
and hang up. The computer system then 
calls the users back at their registered 
phone numbers, thus preventing ACCESS 
from attackers at other phone numbers. 

call sign cipher A cipher system used to 
ENCIPHER or DECIPHER call signs, address 
groups, and address-indicating groups. 

canister A type of protective package 
used to contain and dispense keypunched 
or printed tape forms. 

capability (1) A list associated with 
each subject that defines the system objects 
and the permissions of the subject on these 
object. (2) An unforgeable token that gives 
the holder certain rights to an object. 


capability list A list associated with 
each subject that defines the system ob- 
jects and the permissions of the subject 
on these objects. In a capability-based sys- 
tem, ACCESS to protected objects — such as 
files — is granted if the subject possesses a 
capability for the object. 

CAPI CRYPTOGRAPHIC APPLICATION PRO- 

GRAMMING INTERFACE. 

Capstone chip Microprocessor chip that 
implements the ESCROWED ENCRYPTION STAN- 
DARD (EES), a DlFFIE— HELLMAN-based key ex- 
change algorithm, the Digital SIGNATURE AL- 
GORITHM (DSA), the Secure Hash Algorithm 
1 (SHA-1), and a random number generator. 
See also CUPPER CHIP. 

captive account An account on a time- 
sharing system that is allowed to execute 
only a specific program or a restricted set 
of programs to control ACCESS to system 
resources. 

Carnivore An Internet surveillance tool 
introduced by the U.S. Federal Bureau of 
Investigation to allow law enforcement 
agents to facilitate electronic surveillance in 
a packet-mode communications environ- 
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ment. Its purpose is to intercept and col- 
lect e-mail and other electronic communi- 
cations only when authorized by a court 
order. CARNIVORE has been renamed 
DCS 1000. 

NOTE: There has been a great deal of privacy con- 
cern with regard to the use of CARNIVORE, since it 
may ACCESS and process a large amount of Internet 
traffic not targeted for surveillance through a court or- 
der. Details of an independent technical review of 
CARNIVORE commissioned by the US. Department 
of Justice and conducted by IIT Research Institute can 
be found at http:/ /www.usdoj.gov/ jmd/publications/ 
camiv _fnal.pdf. Sample documents about CARNI- 
VORE released under the Freedom of Information Act 
can be accessed through the Electronic Privacy Infor- 
mation Center (EPIC) Web site at http:/ / www. 
epic.org/privacy/ carnivore / foia_documents.html. 

carrier sense multiple access with 
collision detect A LAN technology for 
communications over a shared wire. Exam- 
ples include 802.3 and Ethernet. 

cascading (1) The downward flow of in- 
formation through a range of security levels 
greater than the ACCREDITATION range of a 
system network or component. (2) Propaga- 
tion of controls along a path. For example, 
cascading revoke follows the path of a grant 
command to revoke propagated privileges. 

category A restrictive label applied to 
limit ACCESS to CLASSIFIED or UNCLASSIFIED 
information. 

catenet A network in which hosts are 
connected to networks with varying charac- 
teristics, and the networks are intercon- 
nected by gateways (routers). The Internet 
is an example of a CATENET. 

CAW CERTIFICATION AUTHORITY 

WORKSTATION. 

CBC CIPHER BLOCK CHAINING. 

CBC residue The last block of ciphertext 
when a message is encrypted using CIPHER 


BLOCK CHAINING. Since it is difficult to find 
two messages with the same CBC RESIDUE 
without knowing the key, CBC RESIDUE is 
often used as an integrity-protecting CHECK- 
SUM for a message. 

CCEP Commercial COMSEC 
Endorsement Program. 

CCI controlled cryptographic item. 

CCI assembly A device embodying a 
CRYPTOGRAPHIC logic or other COMSEC de- 
sign that NSA (U.S.) has approved as a 
CONTROLLED CRYPTOGRAPHIC ITEM (CCI). It per- 
forms the entire COMSEC function, but de- 
pends upon the host equipment to operate. 

CCI component Part of a controlled 
CRYPTOGRAPHIC ITEM (CCI) that does not per- 
form the entire COMSEC function but de- 
pends upon the host equipment, or assem- 
bly, to complete and operate the COMSEC 
function. 

CCI equipment Equipment that embodies 
a CONTROLLED CRYPTOGRAPHIC ITEM (CCI) com- 
ponent or CCI ASSEMBLY and performs the 
entire COMSEC function without depen- 
dence on the host equipment to operate. 

CCITT COMITE CONSULTATIF INTERNA- 

TIONAL Telephonique et Telegraphique. 

CDC Certificate Distribution Center. 

CDSA common data security 

architecture. 

Central Office of Record A federal of- 
fice that keeps records of accountable 
COMSEC MATERIAL held by elements subject 
to its oversight. 

CER cryptographic equipment room. 

CERT Computer Emergency Response 

Team. 

certificate A data structure signed with a 
PUBLIC KEY digital signature stating that a 
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specified PUBLIC KEY belongs to someone or 
something with a specified identification. 
See Figure Cl. X.509 is a PUBLIC KEY distri- 
bution standard. 

Certificate Distribution Center The 

name the DASS system gives to its online 
system that distributes certificates and user 
private keys. See also DISTRIBUTED AUTHENTICA- 
TION Security Service. 

certificate management A process to 
manage certificates, including the genera- 
tion, storage, protection, transfer, loading, 
use, and destruction of CERTIFICATES. 

Certificate Management Protocols 

The Internet X.509 Public Key INFRASTRUC- 
TURE (PKI) Certificate Management Proto- 
cols defined in RFC 2510. Protocol mes- 
sages are defined for all relevant aspects of 
certificate creation and management. 

certificate of action statement State- 
ment attached to a COMSEC audit report 
that is used by a COMSEC CUSTODIAN 
to certify that all actions have been 
completed. 

certificate revocation list A digitally 
signed data structure listing all the certifi- 
cates issued by a given CA that have not 
yet expired but have been revoked, and 
hence are no longer valid. 

certification (1) Authentication of iden- 
tity. (2) The practice of indicating, by the 
issue of a certificate, that a product or sys- 
tem has been evaluated and found to meet 
a set of specified security requirements. 

certification agent (1) A third party 
(system) that judges AUTHENTICITY. (2) An 
individual responsible for making a techni- 
cal judgment of the system’s compliance 
with stated requirements, identifying and 
assessing the risks associated with operat- 
ing the system, coordinating the certifica- 
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FIGURE C 1 . An example of an X.509 certificate. 


tion activities, and consolidating the final 
CERTIFICATION and ACCREDITATION PACKAGES. 

certification authority (1) A trusted 
node that issues CERTIFICATES. A CERTIFICATE is 
a signed message specifying a name and a 
corresponding PUBLIC KEY, used with PUBLIC 
KEY CRYPTOGRAPHY. (2) An agency that issues 
digital certificates to organizations or indi- 
viduals. (3) Third level of the PUBLIC Key IN- 
FRASTRUCTURE (PKI) certification management 
authority, which is responsible for issuing 
and revoking user certificates and exacting 
compliance with the PKI (refers to U.S. 
DoD PKI) policy as defined by the parent 
Policy Creation Authority (PCA). 

certification authority hierarchy A 

tree structure in which a root CERTIFICATION 
AUTHORITY issues certificates for other subor- 
dinate CERTIFICATION AUTHORITIES, which may 
issue further certificates. 

Large-scale deployment of public key 
systems must support multiple CAs and the 
relationship among them. Two common 
structures for expressing this relationship 
are top-down CERTIFICATION AUTHORITY HIERAR- 
CHY and a collection of top-down hierar- 
chies. A diagrammatic representation of 
these two structures is given in Figure C2. 
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(A) |B) 



FIGURE C2. Certificate hierarchy, (a) An example of a certificate hierarchy. In this figure rectangles represent 
subscribers, and ovals represent CAs. (b) Completely connected islands-of-trust schema connecting four islands of 
trust (A), (B), (C), and (D). 
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Following the convention in Internet 
security, Figure C2 (a) uses the names Al- 
ice and Bob to explain the concept of CER- 
TIFICATION AUTHORITY HIERARCHY. Alice and 
Bob are the users who have been issued 
CERTIFICATES. In the figure rectangles repre- 
sent subscribers, and ovals represent CAs. 
An arrow between two CAs means that the 
source CA has certified the destination CA 
to issue certificates (e.g., CA 4 has certified 
the public key of Alice). The certification 
path between Alice and Bob goes through 
CA 4 and CA 2 . 

To overcome the problem of the entire 
Internet population trusting one central 
CA, the Internet trust mechanism is devel- 
oping as “islands of trust,” where each 
community, based on geographic location 
and other requirements, trusts a particular 
CA, so that there is a root CA for each 
community and these root CAs cross- 
certify each other. Figure C2 (b) shows 
a completely connected islands-of-trust 
schema connecting (A), (B), (C), and (D). 
This arrangement allows certification 
paths between pair of subscribers and is 
applicable to large-scale public-key 
applications such as secure e-mail and 
e-commerce. 

The root authority that issues certifi- 
cates is also called the IPRA (INTERNET POL- 
ICY Registration Authority) and registers 
certification authorities known as POLICY 
Creation Authority (PCA). IPRA certifies 
only PCAs and not CAs or users. PCAs 
have their own policy of issuing certifi- 
cates. 

certification authority workstation 

A workstation that is used to issue CERTIFI- 
CATES. Usually it is a COMMERCIAL OFF-THE- 
SHELF (COTS) workstation with a trusted 
operating system and special-purpose ap- 
plication software that is used to issue cer- 
tificates. 


NOTE: This terminology is used mainly in the U.S. 
DoD and is not widely used outside the DoD envi- 
ronment. 

certification package Product of the 
CERTIFICATION effort documenting the de- 
tailed results of CERTIFICATION activities. 

certification test and evaluation Soft- 
ware and hardware security tests and evalu- 
ation conducted during the development of 
an IS. 

certified TEMPEST technical authority 

An experienced, technically qualified U.S. 
government employee who has met estab- 
lished certification requirements in accor- 
dance with NSTISSC-approved criteria 
and has been appointed by a U.S. govern- 
ment department or agency to fulfill CTTA 
responsibilities. 

CFB CIPHER FEEDBACK. 

CGI COMMON GATEWAY INTERFACE. 

challenge Information given to an entity 
so that it can cryptographically process the 
information — using a secret quantity it 
knows — and return the result (called the 
response). This exercise’s purpose is to 
prove knowledge of the secret quantity 
without revealing it to an eavesdropper. 
This process is known as CHALLENGE- 
RESPONSE AUTHENTICATION. 

NOTE: Although CHALLENGE now refers to a 
CRYPTOGRAPHIC process , it previously referred to 
a cryptic process by which two people (eg., spies ) 
would AUTHENTICATE each other. 

challenge and reply authentication A 

prearranged procedure in which a subject 
requests the AUTHENTICATION of another and 
the latter establishes its validity with a cor- 
rect reply. 

challenge-response In this type of AU- 
THENTICATION, a user responds (usually by 
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Chaos Computer Club 



FIGURE C3 . An example of the use of CHECKSUM 
in MESSAGE INTEGRITY. 


performing some calculation) to a CHAL- 
LENGE (usually a numeric, unpredictable 
one) to AUTHENTICATE his/her identity. 

Chaos Computer Club A loosely knit 
organization centered in Germany that 
made news by staging some high-profile 
break-ins into computer networks. 

checksum A small fixed-length quantity 
computed as a function of an arbitrary- 
length message. A CHECKSUM is computed 
by the sender of a message, recomputed, 
and checked by the recipient of a message 
to detect data corruption. Originally, the 
term CHECKSUM meant the specific integrity 
check consisting of adding all the numbers 
together and throwing away carries. Usage 
has extended the definition to include more 
complex noncryptographic functions such 
as CRCs, which detect hardware faults 
with high probability, and CRYPTOGRAPHIC 
functions such as MESSAGE DIGESTS, which 
can withstand attacks from clever attackers. 
See Figure C3. 


check word Ciphertext generated by 
CRYPTOGRAPHIC LOGIC to detect failures in 
CRYPTOGRAPHY. 

Chernobyl packet An IP Ethernet DATA- 
GRAM that passes through a GATEWAY be- 
tween two SUBNETS and has the source and 
the destination addresses as the broadcast 
addresses. This type of packet results in a 
broadcast storm. Also called KAMIKAZE 
PACKET. 

CIK CRYPTO-IGNITION KEY. 

CIPE Crypto IP Encapsulation. 

cipher Any CRYPTOGRAPHIC system or 
CRYPTOSYSTEM in which PLAINTEXT is con- 
cealed by transposing the letters or num- 
bers or substituting other letters or num- 
bers according to a key or by rearranging 
the PLAINTEXT or by all of the above. 

cipher block chaining A method of us- 
ing a BLOCK ENCRYPTION scheme for encrypt- 
ing an arbitrary-size message. Figure C4 
explains CIPHER BLOCK CHAINING (CBC). In 
this figure, vector IV is a random number 
generated and sent along with the message. 
This vector is used as an INITIALIZATION VEC- 
TOR for the first PLAINTEXT message block Bl 
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Bp Plaintext Block 
Cp Ciphertext Block 
IV: Initialization Vector 


FIGURE c4. An example of cipher block chaining. 


(CIPHERTEXT for block 1). A block is 64 bits 
long. Ciphertext for block i t C ( , is XORed 
with PLAINTEXT for block i + 1, B,, before be- 
ing run through an ENCRYPTION ALGORITHM. 

cipher feedback A method of using a 
BLOCK ENCRYPTION scheme for ENCRYPTING a 
message of arbitrary size. Figure C5 shows 
CIPHER FEEDBACK. 

ciphertext Enciphered information. In 
Figure C6, the encoding algorithm right- 
shifts the PLAINTEXT by two letters to pro- 
duce CIPHERTEXT. A becomes D, B becomes 
E, C becomes G, and so on, Y becomes B, 
and Z becomes C. In the figure PLAINTEXT 
HELLO is enciphered to CIPHERTEXT 
KHOOR. 

ciphertext autokey Cryptographic logic 
that uses previous CIPHERTEXT to generate a 
KEY STREAM. 

ciphony A process of enciphering audio 
information that results in ENCRYPTED 
speech. 


circuit-level gateway Ensures the valid- 
ity of TCP and UDP sessions by creating a 
handshake between communicating parties 
and passing packets through until the end 
of the session. A type of FIREWALL. 

CIX Commercial Internet Exchange. 

Clark-Wilson model An integrity 
model for COMPUTER SECURITY policy de- 
signed for a commercial environment (see 
[DC87]). It addresses such concepts such 
as NONDISCRETIONARY ACCESS CONTROL, privi- 
lege separation, and LEAST PRIVILEGE. 

classification The hierarchical portion 
of a sensitivity label. The CLASSIFICATION is 
a single level in a stratified set of levels. 

For example, in a military environment, 
each of the sensitivity levels Unclassified, 
Confidential, Secret, and Top Secret is less 
sensitive than the level above it. When in- 
cluded in a sensitivity label in a system 
supporting MANDATORY ACCESS CONTROLS, a 
CLASSIFICATION is used to limit ACCESS to 
those cleared at that level. 

Figure C7 gives an approximate com- 
parison of security CLASSIFICATIONS of vari- 
ous countries. For more details refer to 
[ISP97]. 
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Bp Plaintext Block 
Cp Ciphertext Block 
IV: Initialization Vector 


FIGURE C 5 . An example of cipher feedback. 



Plaintext 


Encode the plaintext 
using an algorithm 


Ciphertext 
after encoding 


FIGURE C6. An example illustrating CIPHERTEXT. 


classified An adjective describing infor- 
mation that a government does not want 
divulged for national security reasons. 
There are various types of CLASSIFICATION, 
including Confidential, Secret, and Top Se- 
cret. See also CLASSIFICATION. 

classified information Information that 
has been determined pursuant to Executive 
Order 12958 (U.S.) or any predecessor or- 


der, or by the Atomic Energy Act of 1954 
(U.S.), as amended, to require protection 
against unauthorized disclosure and is 
marked to indicate its CLASSIFIED status. 

clearance (1) Represents an AUTHORIZA- 
TION for a user to be granted access to a 
CLASSIFIED INFORMATION. (2) Represents the 
sensitivity level (the CLASSIFICATION and the 
categories) associated with a user in a sys- 
tem supporting MANDATORY ACCESS CON- 
TROLS. A user with a particular CLEARANCE 
can typically read only information with a 
sensitivity label equal to or lower than the 
user’s CLEARANCE and write only informa- 
tion with the same sensitivity label. 

NOTE: A person’s CLEARANCE is permission to 
access information CLASSIFIED at that level. It rep- 
resents reliance placed in that person after background , 
character , and other checks made by a security author- 
ity. In some operating system environments (for ex- 
ample, MLS), a subject (process) with a particular 
CLEARANCE may only read information with a 
CLASSIFICATION level equal to or lower than the 
CLEARANCE, and may only write information at 
the same CLASSIFLCATLON of the subject’s CLEAR- 
ANCE. A user with a CLEARANCE of, say, TS is 
usually able to create a process (subject) with a lower 
CLEARANCE, say S, to create a fie at the S level. 
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cede 


Country 


Security Classification 


U.S. 

Top Secret 

Secret 

Confidential 

Other 

Australia 

Top Secret 

Secret 

Confidential 

Restricted 

Canada 

Top Secret 

Secret 

Confidential 

Restricted 

France 

Tres Secret 

Secret Defense 

Confidentiel 

Diffusion Restreinte 

Germany 

Streng Geheim 

Geheim 

Vs-Vertaulich 

— 

India 

Top Secret 

Secret 

Confidential 

Restricted 

Japan 

Kimitsu 

Gokuhi 

Hi 

Toriatsukaichui 

New Zealand 

Top Secret 

Secret 

Confidential 

Restricted 

Russia 

Cobeoweh-ho 

Cekpetho 

— 

— 

United Kingdom 

Top Secret 

Secret 

Confidential 

Restricted 


FIGURE C7. Approximate comparison of security 
classifications of various countries. 


clearing The removal of data from an 
IS, its storage devices, and other peripheral 
devices with storage capacity in such a way 
that the data may not be reconstructed us- 
ing common systems capabilities (i.e., key- 
board strokes); however, the data may be 
reconstructed using laboratory methods. 
Cleared media may be reused at the same 
CLASSIFICATION level or at a higher level. 
Overwriting is one method of CLEARING. 

cleartext A message that is not EN- 
CRYPTED. See also PLAINTEXT. 

client Something (usually a process) that 
accesses a service (from another process, 
also referred to as a server) by communi- 
cating with it over a computer network. 

Clipper Shorthand for CUPPER CFIIP and 
for the U.S. government’s policy regarding 
the use of this chip, 

Clipper chip The hardware implementa- 
tion of the Escrowed Encryption Standard. 
The chip was designed by the U.S. NA- 
TIONAL Security Agency (NSA) and origi- 
nally used in a telephone security device 
manufactured by AT&T. The chip is no 
longer manufactured. 


client-server model A common way to 
describe network services and the model 
user process of those services. See Figure 
C8. Examples include the name-server/ 
name-resolver paradigm of the DOMAIN name 
system and file-server/ file-client relation- 
ships such as Network File System (NFS) and 
diskless hosts. See also NETWORK FILE SYSTEM. 

CLNP Connectionless Network 
Protocol. 

closed security environment An envi- 
ronment providing sufficient ASSURANCE 
that applications and equipment are pro- 
tected against the introduction of malicious 
logic during an IS life cycle. Closed secu- 
rity is based upon a system’s developers, 
operators, and maintenance personnel hav- 
ing sufficient CLEARANCES, AUTHORIZATION, 
and CONFIGURATION CONTROL. 

CMCS COMSEC MATERIAL CONTROL 

SYSTEM. 

CMP Certificate Management 

Protocols. 

CMS Cryptographic Messaging 

Syntax. 

COCOM Coordinating Committee 
for Multilateral Export Controls. 

code (1) (COMSEC) System of commu- 
nication in which arbitrary groups of 
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FIGURE C8. A simple client-server model. 


words, letters, numbers, or symbols replace 
other words, phrases, letters, or numbers 
for concealment or brevity. (2) A system 
of symbols that make up a CIPHERTEXT. 

(3) Also refers to a system of instructions 
that makes up a software source, or execut- 
able information, 

code book A document containing 
PLAINTEXT and code equivalents in a system- 
atic arrangement, or a technique of ma- 
chine ENCRYPTION using a word substitution 
technique. 

code group A group of letters, numbers, 
or both in a code system used to represent 
a PLAINTEXT word, phrase, or sentence. 

code obfuscation A code transforma- 
tion technique to prevent malicious reverse 
engineering of CODE. In this technique, 
original CODE is converted to an equivalent 
CODE that is functionally identical to the 
original CODE but is more difficult to de- 
compile and reverse engineer. In general, 
CODE OBFUSCATION is applied to MOBILE CODE 
executables because they are isomorphic 
(similar in form and function) to the 
source CODE. This ensures platform inde- 
pendence but makes them easy to decom- 


pile and vulnerable to malicious reverse en- 
gineering attacks. 

NOTE : /] transformation If from a program P to a 
program () is an OBFUSCATION transformation 
[CC98], if (1) both P and () have same observable 
behavior except for non-termination and error - 
termination. () may have side effects not observable by 
user such as creating files, sending messages over the 
Internet and also P and () may have different per - 
formance characteristics; and (2) the transformation 
I makes () more obscure , complex , or unreadable 
than P (for metrics of complexity see [SH81J , 
[fM93], [TM76], [WH81]). Colberg [CC98] 
defines four measures of the quality of an OBFUS- 
CATION transformation, potency, resilience, stealth, 
and cost. Potency measures how obscure () is made by 
If resilience measures ability to withstand attacks from 
automatic deobfuscators, stealth measures how obfuscated 
CODE blends with the rest of the program, and cost 
measures the time and space increase because of obfus- 
cation. 

code signing Code signing is used to 
verify the source of a program. A secure 
hashing algorithm is used on the code to 
be executed providing a compact code SIG- 
NATURE. This SIGNATURE is encrypted using 
the private key of a vendor. Code is re- 
trieved with the SIGNATURE. The SIGNATURE 
is decrypted using the vendor’s PUBLIC KEY. 

If the HASH value and decrypted SIGNATURE 
are identical, the CODE has not been tam- 
pered with. This provides CODE accessed 
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via the INTERNET to be treated as “shrink- 
wrapped" software. Active X from Micro- 
soft uses this technique to verify software 
INTEGRITY [BSOO]. 

code vocabulary A set of plaintext 
words, numerals, phrases, or sentences for 
which code equivalents are assigned in a 
code system. 

COI COMMUNITY OF INTEREST. 

cold start A procedure for initially key- 
ing CRYPTO-EQUIPMENT. 

command and control warfare This 
term refers to both offensive and defensive 
operations and is an example of informa- 
tion operations in military settings and 
information warfare. It involves the use of 
electronic warfare, military deception, and 
psychological operations to adversely 
affect enemy command and control while 
protecting friendly command and control 
capabilities. 

command authority An individual who 
is responsible for the appointment of user 
representatives for a department, agency, 
or organization and their key ordering 
privileges. 

Commercial COMSEC Endorsement 
Program Relationship between NSA 
(U.S.) and industry in which NSA provides 
the COMSEC expertise (i.e., standards, al- 
gorithms, evaluations, and guidance) and 
industry provides design, development, and 
production capabilities to produce a Type 1 
or Type 2 product. Products developed un- 
der the CCEP may include modules, subsys- 
tems, equipment, systems, and ancillary 
devices. 

Commercial Internet Exchange An 

industry organization for Internet service 
providers. 


commercial off-the-shelf A readily 
available commercial product (software) 
that is not developed to particular govern- 
ment or industry specifications or for a 
particular project. See also BESPOKE. 

Comite Consultatif International Tele- 
phonique et Telegraphique It is now 

called International Telecommunications 
Union (ITU), standard organization domi- 
nated by European telephone companies 
known as PTTs, where PTT stands for 
Postal, Telephone, and Telegraph Author- 
ity. Comite Consultatif International T ele- 
phonique et Telegraphique (CCITT) pub- 
lished standards for computer networking, 
including the X.400 series of documents 
concerning electronic mail and the X.500 
series of documents concerning directory 
services. 

Common Criteria The Common Criteria 
for Information T echnology Security Eval- 
uation referred to as COMMON CRITERIA 
(now it has an equivalent standard 
ISO/IEC 15408) is a multipart standard 
to be used as a basis of evaluation of secu- 
rity properties of IT products and services. 
It is described in three parts. Part 1 pro- 
vides an introduction and general model. 
Part 2 provides security and functional re- 
quirements. Part 3 contains security ASSUR- 
ANCE requirements. The COMMON CRITERIA 
combines ideas from its various predeces- 
sors (see NOTE below). 

It covers IT security measures and per- 
mits comparison of independent security 
evaluations. The COMMON CRITERIA is de- 
signed to serve as a guide for the develop- 
ment of products or systems with IT secu- 
rity functions and for the procurement of 
commercial products and systems with IT 
security functions. It also addresses protec- 
tion of information from unauthorized dis- 
closure, modification, or loss of use. 
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Common Criteria defines seven Evalua- 
tion Assurance Levels (EAL): EAL1, func- 
tionally tested; EAL2, structurally tested; 
EAL3, methodically tested and checked; 
EAL4, methodically designed, tested, and 
reviewed; EAL5, semiformally designed 
and tested; EAL6, semiformally verified 
designed and tested; EAL7, formally veri- 
fied designed and tested. An EAL is a 
package consisting of ASSURANCE compo- 
nents that represent a point on the COM- 
MON Criteria predefined assurance scale. 

More details about COMMON CRITERIA can 
be obtained from http:// csrc.nist.gov/ cc/ 
or http;/ /www.commoncriteria.org. 

NOTE: The origins of the COMMON CRITERIA 
can he traced to the TRUSTED COMPUTER SYS - 
TEM Evaluation Criteria (TCSEC) devel- 
oped (1980) in the United States. The COMMON 
CRITERIA merges ideas from the following predeces- 
sors. The Information Technology Se- 
curity Evaluation Criteria (ITSEC) 
version 1.2 published (1991) hy the European Com- 
mission and based on the joint efforts of France , Ger- 
many. the Netherlands^ and the United Kingdom. The 
Canadian Trusted Computer Product Evaluation 
Criteria (CTCPEC) version 3.0 (1993) combined 
the ITSEC and TCSEC approaches. The U.S. pub- 
lished the draft Federal Criteria for Information 
Technology Security version 1.0 (1993) that com- 
bined North American and European concepts for 
evaluation criteria. Building on these efforts , COM- 
MON Criteria was developed. Common Cri- 
teria (vl.O) was published in 1996 , and COM- 
MON CRITERIA version 2.0 was published in 
1998. Common Criteria version 2.1 is now 
available for use. 

common data security architecture A 

set of specifications of APIs to define a 
comprehensive approach to security service 
and security management for computer- 
based security applications initiated by Intel 
Corporation. 

common fill device One of a family of 
devices developed to read in, transfer, or 
store keys. 


common gateway interface A method 
or convention to pass a Web user’s request 
between a web server and an application 
program and to receive data back that is 
forwarded to the user. Because the gateway 
is consistent, a programmer may write a 
COMMON GATEWAY INTERFACE (CGI) program 
in a number of different languages, such as 
C, C ++ , Java, PERL (Practical Extrac- 
tion and Reporting Language). For exam- 
ple, Microsoft’s Active Server Pages (ASP), 
Java Server Pages, and Servlets are alterna- 
tives to CGI. 

communications cover The concealing 
or altering of characteristic communica- 
tions patterns to hide information that 
could be of value to an ADVERSARY. 

communications deception Deliberate 
transmission, retransmission, or alteration 
of communications to mislead an ADVER- 
SARY’S interpretation of the communica- 
tions. See also IMITATIVE COMMUNICATIONS DECEP- 
TION and MANIPULATIVE COMMUNICATIONS 
DECEPTION. 

communications profile An analytic 
model of communications associated with 
an organization or activity. The model is 
prepared from a systematic examination of 
communications content and patterns, the 
functions they reflect, and the COMMUNICA- 
TIONS SECURITY measures applied. 

communications security Communica- 
tions SECURITY (COMSEC). The measures 
and controls taken to deny unauthorized 
persons information derived from telecom- 
munications and to ensure the AUTHENTICITY 
of such telecommunications. COMMUNICA- 
TIONS SECURITY includes CRYPTOSECURITY, 
TRANSMISSION SECURITY, EMISSION SECURITY, and 
PHYSICAL SECURITY of COMSEC MATERIAL. 


26 



computer security subsystem 


community of interest A group of peo- 
ple with a common interest without any 
regard to geographical boundaries. This 
term usually refers to groups of people 
who pursue their meetings or form com- 
munities through chat rooms, mailing lists, 
and discussion servers on the Internet. 

compartmentalization A nonhierarchi- 
cal grouping of sensitive information used 
to control access to data more finely than 
with hierarchical security CLASSIFICATION 
alone. 

compartmented mode (1) In compart- 
MENTED MODE, the IS is trusted to prevent a 
user without formal access to a given com- 
partment from accessing any information 
in that compartment that is stored within 
the IS. See also MULTILEVEL MODE. 

(2) INFOSEC mode of operation 
wherein each user with direct or indirect 
access to a system, its peripherals, remote 
terminals, or remote hosts has all of the 
following: (a) a valid security CLEARANCE 
for the most restricted information pro- 
cessed in the system; (b) formal access ap- 
proval and signed nondisclosure agreements 
for that information which to a user is to 
have access; and (c) a valid NEED-TO-KNOW 
for information that is to be accessed. 

compromise (1) Circumvent security 
measures in order to acquire unauthorized 
access to information or system resources. 
(2) A state in which the security objectives 
of the information system are not main- 
tained. 

compromising emanations Uninten- 
tional signals that if intercepted and ana- 
lyzed would disclose the information trans- 
mitted, received, handled, or otherwise 
processed by information systems equip- 
ment. See also TEMPEST. 

computer abuse The intentional or 
reckless misuse, alteration, disruption, or 


destruction of information-processing re- 
sources. 

computer cryptography The use of a 

CRYPTOALGORITHM program by a computer 
to AUTHENTICATE or encrypt/ decrypt infor- 
mation. 

Computer Emergency Response Team 

It plays a major role in awareness, re- 
sponse, and prevention activities related to 
computer and network security and issues 
alerts and advisories. COMPUTER EMERGENCY 
Response Team (CERT) was established in 
1988 by the Advanced RESEARCH PROJECTS 
Agency (ARPA) in response to the Internet 
Worm incident (1988). CERT is located at 
Carnegie Mellon University and has vari- 
ous international centers. See also INTERNET 
WORM. 

computer forensics Relates to the col- 
lection, preservation, and analysis of 
computer-related criminal evidence. 

Computer Oracle and Password 
System UNIX security status checker. 
Checks various files and software configu- 
rations to see whether they have been com- 
promised (edited to plant a Trojan horse 
or back door) and checks to see that files 
have the appropriate modes and permis- 
sions set to maintain the integrity of a se- 
curity level (makes sure that file permis- 
sions do not leave themselves open to 
ATTACK or access). 

computer security Measures and con- 
trols that ensure the CONFIDENTIALITY, INTEG- 
RITY, and AVAILABILITY of IS assets including 
hardware, software, firmware, and informa- 
tion being processed, stored, and commu- 
nicated. 

computer security incident 

INCIDENT. 

computer security subsystem Hard- 
ware or software designed to provide COM- 
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PUTER SECURITY features in a larger system 
environment. 

COMSEC COMMUNICATIONS SECURITY. 

COMSEC account Administrative entity, 
identified by an account number, used to 
maintain ACCOUNTABILITY, custody, and con- 
trol of COMSEC MATERIAL. 

COMSEC account audit Examination of 
the holdings, records, and procedures of a 
COMSEC ACCOUNT ensuring that all ac- 
countable COMSEC MATERIAL is properly 
handled and safeguarded. 

COMSEC aid COMSEC material that as- 
sists in securing telecommunications and is 
required in the production, operation, or 
maintenance of COMSEC systems and their 
components. COMSEC keying material, call 
sign/ frequency systems, and supporting 
documentation, such as operating and 
maintenance manuals, are examples of 
COMSEC AIDS. 

COMSEC boundary Definable perimeter 
encompassing all hardware, firmware, and 
software components performing critical 
COMSEC functions, such as key generation 
and key handling and storage. 

COMSEC chip set A collection of U.S. 
NSA- approved microchips. 

COMSEC control program Computer 
instructions or routines controlling or af- 
fecting the externally performed functions 
of key generation, key distribution, message 
ENCRYPTION/DECRYPTION, or AUTHENTICATION. 

COMSEC custodian A person designated 
by a proper authority to be responsible for 
the receipt, transfer, accounting, safeguard- 
ing, and destruction of COMSEC MATERIAL 
assigned to a COMSEC ACCOUNT. 

COMSEC end-item Equipment or com- 
bination of components ready for use in a 
COMSEC application. 


COMSEC equipment Equipment de- 
signed to provide security to telecommuni- 
cations by converting information to a 
form unintelligible to an unauthorized in- 
terceptor and, subsequently, by recovering 
such information to its original form for 
authorized recipients; also, equipment de- 
signed specifically to aid in, or as an essen- 
tial element of, the conversion process. 

COMSEC facility Sp ace used for generat- 
ing, storing, repairing, or using COMSEC 
MATERIAL. 

COMSEC incident incident. 

COMSEC insecurity A COMSEC incident 

that has been investigated, evaluated, and 
determined to have jeopardized the security 
of COMSEC MATERIAL or the secure trans- 
mission of information, 

COMSEC manager Person who manages 
the COMSEC resources of an organization. 

COMSEC material Item designed to se- 
cure or AUTHENTICATE telecommunications. 
COMSEC MATERIAL includes, but is not lim- 
ited to, key, equipment, devices, docu- 
ments, firmware, or software that embodies 
or describes CRYPTOGRAPHIC LOGIC and other 
items that perform COMSEC functions, 

COMSEC material control system 

Logistics and accounting system through 
which COMSEC MATERIAL marked 
“CRYPTO” is distributed, controlled, and 
safeguarded. Included are the COMSEC cen- 
tral offices of record, cryptologic depots, 
and COMSEC accounts. COMSEC material 
other than key may be handled through the 
COMSEC MATERIAL CONTROL SYSTEM. 

COMSEC modification informa- 

tion SYSTEM SECURITY EQUIPMENT MODIFICATION. 

COMSEC module Removable compo- 
nent that performs COMSEC functions in 
telecommunications equipment or systems. 
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COMSEC monitoring The act of listen- 
ing to, copying, or recording transmissions 
of one’s own official telecommunications 
to analyze the degree of security. 

COMSEC profile Statement of COMSEC 
measures and materials used to protect a 
given operation, system, or organization. 

COMSEC survey Organized collection of 
COMSEC and communications information 
relative to a given operation, system, or or- 
ganization. 

COMSEC system data Information re- 
quired by COMSEC EQUIPMENT or system to 
enable it to properly handle and control 
KEY. 

COMSEC training Teaching of skills re- 
lating to COMSEC accounting, use of 
COMSEC AIDS, or installation, use, mainte- 
nance, and repair of COMSEC EQUIPMENT. 

concept of operations Document de- 
tailing the method, act, process, or effect 
of using an IS. 

confidentiality The property of not be- 
ing divulged to unauthorized parties. A 
CONFIDENTIALITY service assists in the preven- 
tion of disclosure of information to unau- 
thorized parties. 

configuration control The process of 
controlling modifications to hardware, 
firmware, software, and documentation to 
ensure that an IS is protected against im- 
proper modifications prior to, during, and 
after system implementation, 

configuration management Manage- 
ment of security features and ASSURANCES 
through the control of changes made to 
hardware, software, firmware, documenta- 
tion, test, test fixtures, and test documenta- 
tion throughout the life cycle of an IS. 

confinement Not allowing information 
of a certain security CLASSIFICATION to es- 


cape from the environment in which it is 
allowed to reside. 

confinement channel covert 

CHANNEL. 

confinement property Synonymous 
with STAR (*) PROPERTY. 

connectionless The model of intercon- 
nection in which communication takes 
place without first establishing a connec- 
tion. Sometimes called a DATAGRAM. Exam- 
ples include UDP and ordinary postcards. 
Figure C9 shows that packets with the 
same source and destination (A to D) may 
take different routes. 

Packets 1 and 3 are routed by switch 1 
through link 3, and packet 2 through link 
7. Switch 2 then routes packets 1 and 3 to 
switch 3 through link 5. Switch 3 then di- 
verts packets 3, 1, 2 to destination D in 
the order of their arrival. Contrast this 
with a CONNECTION-ORIENTED system where 
the packets will take the same route for 
same source and destination. 

Connectionless Network Protocol An 

OSI standard network layer protocol for 
sending data through a computer network. 

connection-oriented The model of in- 
terconnection in which communication 
proceeds though three well-defined phases: 
connection establishment, data transfer, 
and connection release. Examples include 
X.25, Internet TCP, and ordinary telephone 
calls. In Figure CIO a virtual connection is 
established from node A to node D 
through links 1, 3, 5, 6 as highlighted by a 
thick line in the figure. All data transfer 
for a particular session is through this link 
until the connection is released. 

CONOP CONCEPT OF OPERATIONS. 

contamination The introduction of data 
of one security CLASSIFICATION or security 
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FIGURE c9. A CONNECTIONLESS network. 


category into data of a lower security CLAS- 
SIFICATION or different security category. 
Typically an undesirable situation. When 
sensitive information is inadvertently trans- 
ferred onto an insufficiently secure system, 
for example secret information copied onto 
an UNCLASSIFIED computer that might be 
connected to the Internet, this would con- 
taminate the UNCLASSIFIED computer. 

contingency key Key held for use under 
specific operational conditions or in sup- 
port of specific CONTINGENCY PLANS. 

contingency plan Plan maintained for 
emergency response, backup operations, 
and postdisaster recovery for an IS, to en- 
sure the availability of critical resources 
and to facilitate the continuity of opera- 
tions in an emergency situation. 

controlled access point Provides a net- 
work mechanism intended to reduce the 
risk of password guessing, probing for 
well-known accounts with default pass- 


words, trusted host RLOGIN, and password 
capture by network snooping. Two local 
nets — one a secure segment with an AU- 
THENTICATION service and the other a nonse- 
cure segment — communicate with each 
other via a CAP. The CAP is essentially a 
router with additional functionality to de- 
tect incoming connection requests, inter- 
cept the user AUTHENTICATION process, and 
invoke the AUTHENTICATION server. 

controlled access protection The C2 

level of protection described in the TRUSTED 
Computer System Evaluation Criteria (Or- 
ange Book). Its major characteristics are 
individual ACCOUNTABILITY, AUDIT, ACCESS 
CONTROL, and OBJECT REUSE. 

controlled cryptographic item Secure 
telecommunications or information- 
handling equipment, or associated CRYPTO- 
GRAPHIC COMPONENT, that is UNCLASSIFIED but 
governed by a special set of control re- 
quirements. Such items are marked “CON- 
TROLLED CRYPTOGRAPHIC ITEM” 
or, where space is limited, “CCI.” 

controlled security mode *" multi- 
level SECURITY. 
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FIGURE cl 0. A CONNECTION-ORIENTED network. 


controlled sharing A condition existing 
when ACCESS CONTROL is applied to all users 
and components of an IS. 

controlled space Three-dimensional 
space surrounding IS equipment within 
which unauthorized persons are denied un- 
restricted access and are either escorted by 
authorized persons or are under continuous 
physical or electronic surveillance. 

controlling authority Official responsi- 
bility for directing the operation of a CRYP- 
TONET and for managing the operational use 
and control of keying material assigned to 
the CRYPTONET. 

conversation key A temporary encryp- 
tion key issued to communicating entities 
by an Authentication Service. 

cookies Information about Web site vis- 
itors created by Web sites and stored on 
the visitors’ computers. 

cooperative key generation Electroni- 
cally exchanging functions of locally gener- 


ated random components from which both 
terminals of a secure circuit construct a 
TRAFFIC ENCRYPTION KEY or a KEY ENCRYPTION 
KEY for use on that circuit. 

cooperative remote rekeying Synony- 
mous with MANUAL REMOTE REKEYING. 

Coordinating Committee for Multi- 
lateral Export Controls International 
forum for coordinating export control 
regulations on technology of military signif- 
icance, including CRYPTOGRAPHY. COORDINAT- 
ING Committee for Multilateral Export Con- 
trols (COCOM) was dissolved in 1994, 
but the coordination of export regulations 
has continued under the WASSENAAR AR- 
RANGEMENT, which was established in 1996. 
See also WASSENAAR ARRANGEMENT. 

COPS Computer Oracle and Pass- 
word System. 

COR ■*" Central Office of Record. 

correctness proof A mathematical proof 
of consistency between a specification and 
its implementation. 

cost-benefit analysis The assessment 
of the cost of providing protection or se- 
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curity commensurate with the risk and 
magnitude of asset loss or damage. 

COTS COMMERCIAL OFF-THE-SHELF. 

countermeasure A countermeasure is 
the action, device, procedure, technique, or 
other measure that reduces the vulnerability 
of an IS, 

covert channel A mechanism or a chan- 
nel not intended for information transfer 
could be used for that purpose. For exam- 
ple, dynamically creating and deleting files 
to transmit 0 or 1 bit information. Re- 
quires two active agents, one at high and 
one at low security level, and an encoding 
schema. See also OVERT CHANNEL and EXPLOIT- 
ABLE CHANNEL. 

covert channel analysis Assessment of 
the degree to which covert channels could 
be used to contravene the security policy 
of a system. Typically, this will identify 
both the channels themselves and the in- 
formation transfer rates that could be 
achieved. 

covert storage channel The transmis- 
sion of information by modulating the ca- 
pacity (or other attribute) of a storage re- 
source. The transmitter creates files on a 
disk of different sizes or file names. The 
receiver (who is forbidden from receiving 
information from the transmitter) is able 
to determine the amount of free disk space 
left, or the name of the file, or other at- 
tributes, without reading the contents of 
the file itself. COVERT STORAGE CHANNELS 
typically involve a finite resource (e.g., sec- 
tors on a disk) that is shared by two sub- 
jects at different security levels. 

covert timing channel Covert channel 
in which one process signals information 
to another process by modulating its own 
use of system resources (e.g., central pro- 
cessing unit time) in such a way that this 


manipulation affects the real response time 
observed by the second process. 

cracker A person who breaks security 
controls for criminal pursuits. Although 
not in general use, this term is common 
among computer professionals and acade- 
micians. 

CRC CYCLIC REDUNDANCY CODE. 

CRC-32 A particular CRC that produces a 
32-bit output. 

credentials Secret information used to 
prove one’s identity or AUTHORIZATION in an 
AUTHENTICATION exchange. 

criteria Definitions of properties and 
constraints to be met by system functional- 
ity and ASSURANCE. 

critical infrastructures Those physical 
and information-based systems essential to 
the minimum operations of the economy 
and government. 

CRL CERTIFICATE REVOCATION LIST. 

cryptanalysis The process of finding 
weaknesses or flaws in CRYPTOGRAPHIC 
algorithms, 

crypto-alarm Circuit or device that de- 
tects failures or aberrations in the logic or 
operation of CRYPTO-EQUIPMENT. A CRYPTO- 
ALARM may inhibit transmission or may 
provide a visible and/ or audible alarm. 

crypto-algorithm A short form of 
“cryptographic algorithm.” Well-defined 
procedure or sequence of rules or steps or 
a series of mathematical equations used to 
describe CRYPTOGRAPHIC processes such as 
ENCRYPTION, DECRYPTION, KEY GENERATION, AU- 
THENTICATION, SIGNATURES, etc. 

crypto-ancillary equipment Equip- 
ment designed specifically to facilitate effi- 
cient or reliable operation of CRYPTO-EQUIP- 
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MENT, without performing CRYPTOGRAPHIC 
functions itself. 

crypto-equipment Equipment that em- 
bodies CRYPTOGRAPHIC LOGIC. 

cryptographic Pertaining to, or con- 
nected with, CRYPTOGRAPHY. 

cryptographic application program- 
ming interface Cryptographic applica- 
tion PROGRAMMING INTERFACE (CAPI) specifies 
an interface to a library of functions for 
security and CRYPTOGRAPHY services. It sepa- 
rates CRYPTOGRAPHIC routines from applica- 
tions so if needed software can be exported 
without any security services implemented, 
and may later be linked by the user to the 
local security services. CAPIs can be imple- 
mented as CRYPTOGRAPHIC module interfaces, 
authentication service interfaces, or at a 
different level of abstraction. Examples of 
CAPIs include RSA Laboratories’ Cryptoki 
(PKCS #11), NSA’s (U.S.) Fortezza, In- 
ternet GSS-API (see RFC 1508). 

cryptographic checksum A one-way 
function that calculates a unique finger- 
print of a message (or a file). This pro- 
vides an integrity check with the property 
that it is very hard to find a valid CHECK- 
SUM for a message unless the SECRET KEY is 
known. The data in the message is sent 
along with the CHECKSUM and at destination 
the CHECKSUM is recomputed. Any tamper- 
ing of data is likely to result in a different 
CHECKSUM. It provides a probabilistic proof 
that the data was not tampered with. 

cryptographic component Hardware 
or firmware embodiment of CRYPTOGRAPHIC 
LOGIC. For example, a modular assembly, 
printed wiring assembly, or a microcircuit 
may implement CRYPTOGRAPHIC LOGIC. 

cryptographic engine Hardware or 
software implementation of CRYPTOGRAPHIC 


functions. An example of software imple- 
mentation is RSA’s BSAFE, and an exam- 
ple of hardware implementation is the 
FORTEZZA CARD. See also FORTEZZA CARD. 

cryptographic equipment room 

Controlled-access room in which CRYPTO- 
SYSTEMS are located. 

cryptographic initialization A function 
used to set the state of CRYPTOGRAPHIC LOGIC 
prior to KEY GENERATION, ENCRYPTION, or 
other operating mode. 

cryptographic logic The embodiment 
of one or more CRYPTO-ALGORITHMS along 
with alarms, checks, and other processes 
essential to the effective and secure perfor- 
mance of the CRYPTOGRAPHIC PROCESS(ES). 

Cryptographic Messaging Syntax A 

general syntax as outlined in RFC 2315 
for data that may have CRYPTOGRAPHY ap- 
plied to it, such as digital signatures and 
digital envelopes. 

cryptographic randomization Func- 
tion that randomly determines the transmit 
state of CRYPTOGRAPHIC LOGIC. 

cryptography (1) Art or science con- 
cerning the principles, means, and methods 
for rendering plain information unintelligi- 
ble and for restoring encrypted information 
to intelligible form. (2) The subject area 
that deals with mathematical techniques re- 
lated to aspects of information security 
such as CONFIDENTIALITY, AUTHENTICATION, 

DATA INTEGRITY, and NONREPUDIATION. 

crypto-ignition key Device or electronic 
key used to unlock the secure mode of 
CYPTO-EQUIPMENT. 

Crypto IP Encapsulation A project to 
build encrypting IP routers that route en- 
crypted UDP packets whose purpose is to 
securely connect subnets over an insecure 
transit network. The purpose of IPSEC and 
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CIPE are the same. However, CIPE is not 
very flexible in functionality as compared 
to IPsec. See also INTERNET PROTOCOL SECURITY. 

cryptology (1) Field encompassing both 
CRYPTOGRAPHY and CRYPTANALYSIS. (2) The 
area of making and breaking schemes used 
for achieving CRYPTOGRAPHIC goals such as 
CONFIDENTIALITY, AUTHENTICATION, DATA INTEG- 
RITY, and NONREPUDIATION. See also CRYPTOGRA- 
PHY and CRYPTANALYSIS. 

cryptonet Stations holding a common 
key. 

cryptoperiod Time span during which a 
key setting remains in effect. 

cryptosecurity Component of COMSEC 
resulting from the provision of technically 
sound CRYPTOSYSTEMS and their proper use. 

cryptosynchronization The process by 
which a receiving decrypting instance of 
CRYPTOGRAPHIC LOGIC attains the same inter- 
nal state as the transmitting encrypting 
logic. 

cryptosystem Associated INFOSEC 
items interacting to provide a single means 
of ENCRYPTION or DECRYPTION. 

cryptosystem assessment Process of 
establishing the exploitability of a CRYPTO- 
SYSTEM, normally by reviewing the transmit- 
ted traffic protected or secured by the sys- 
tem under study. 

cryptosystem evaluation Process 
of determining vulnerabilities of a CRYPTO- 
SYSTEM. 


cryptosystem review Examination 
of a CRYPTOSYSTEM by the CONTROLLING AU- 
THORITY, ensuring its adequacy of design 
and content, continued need, and proper 
distribution. 

cryptosystem survey Management 
technique in which the actual holders of a 
CRYPTOSYSTEM express opinions on the sys- 
tem’s suitability and provide usage infor- 
mation for technical evaluations. 

CSMA/CD CARRIER SENSE MULTIPLE 

ACCESS WITH COLLISION DETECT. 

CT&E CERTIFICATION TEST AND 

EVALUATION. 

CTTA certified TEMPEST technical 

AUTHORITY. 

cybercrud Mostly useless computer- 
generated gibberish that people either ig- 
nore or are intimidated and annoyed by. 

cybersquatting Registering a domain 
name that is a trademark of another person 
or company with the hope that the original 
owner will pay money to retain the domain 
rights. 

cybervandalism The electronic defac- 
ing of an existing Web page or site. 

cyclic redundancy check Error- 
checking mechanism that checks data 
integrity by computing a polynomial- 
algorithm-based CHECKSUM. 

cyclic redundancy code Code produced 
by CYCLIC REDUNDANCY CHECK. See also CYCLIC 
REDUNDANCY CHECK. 
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D Al. 

DAA ■*" DESIGNATED APPROVING 
AUTHORITY. 

DAC DISCRETIONARY ACCESS CONTROLS. 

daemon process A process that runs 
continuously in the background on a com- 
puter with no associated user, waiting for 
some event to occur or some condition to 
be true. DAEMON PROCESSES can provide ser- 
vices and perform administrative functions. 
Also called DEMON PROCESS. 

dangling threat Set of properties about 
the external environment for which there is 
no corresponding vulnerability and there- 
fore no implied risk. 

dangling vulnerability Set of proper- 
ties about the internal environment for 
which there is no corresponding threat and, 
therefore, no implied risk. 

DARPA ■*" Defense Advanced Research 
Projects Agency. 

DASS Distributed Authentication 
Security Service. 

data aggregation The compilation of 
individual data systems and data elements 


where the resulting aggregate has higher 
sensitivity to security than the highest 
sensitivity of the individual component. 
Data AGGREGATION is best illustrated by 
looking at the aggregation of credit card 
purchases by an individual. Knowing a sin- 
gle purchase by a credit card is not very in- 
teresting or useful, but knowing a complete 
historical pattern about what, how, and 
when a person buys things could be very 
valuable. 

data-driven attack An attack that is 
triggered by the presence of a certain (pos- 
sibly innocuous/inconspicuous) pattern in 
the data supplied to a program. 

Data Encryption Standard Crypto- 
graphic ALGORITHM designed for the protec- 
tion of UNCLASSIFIED data and published by 

the National Institute of Standards and 
Technology (U.S.) in Federal Information 
Processing Standard (FIPS) Publication 46. 

The same binary key is used for ENCRYPTION 
and DECRYPTION. See also ADVANCED ENCRYP- 
TION Standard. 

Figure D1 shows three stages: an initial 
permutation stage, 16 steps of encryption, 
and a final permutation stage. Each of the 
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56 Bit 



Initial 

Permutation 


FIGURE D 1 . An illustration of DES. 


16 steps operates on 48 of the 56 bits of 
the Data Encryption Standard (DES) key. 

NOTE: FIPS Publication 46-3 ( October 1999) 
specifies two CRYPTOGRAPHIC algorithms , the 
Data Encryption Standard (DES) and 
the Triple Data Encryption Standard (TDEA). 

Details of FIPS 46-3 and these standards are 
available at http://csrc.nist.gov/publications/jips/ 
jps46-3 / jps46-3.pdf . 

datagram internet datagram. 

data integrity Condition when data is 
unchanged from its source to destination. 

data link layer The OSI layer that is re- 
sponsible for data transfer across a single 
physical connection, or series of bridged 
connections, between two network entities. 
See also ISO OSI. 


Key 



Final 

Permutation 


data origin authentication Corrobora- 
tion that the source of data is as claimed. 

data security The protection of data 
from unauthorized (accidental or inten- 
tional) modification, destruction, disclo- 
sure, or denial of service. 

data transfer device Fill device de- 
signed to securely store, transport, and 
transfer electronically both COMSEC and 
TRANSEC keys, designed to be backward 
compatible with the previous generation 
of COMSEC common fill devices, and 
programmable to support modem mission 
systems, 

DCE Distributed Computing 
Environment. 

DDoS distributed denial of service. 

decertification The revocation of the 
CERTIFICATION of an IS item or equipment for 
cause. 
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decipher To decrypt. To transform ci- 
phertext to PLAINTEXT. Deciphering is a nar- 
rower term than decrypting. ENCIPHERMENT 
specifically uses a CIPHER, whereas ENCRYP- 
TION can use any means of concealment of 
data. 

decode To convert encoded text to 
PLAINTEXT. 

decryption To undo the encryption 
process. 

dedicated mode IS security mode of 
operation wherein each user with direct or 
indirect access to the system, its peripher- 
als, remote terminals, or remote hosts has 
all of the following: (a) valid security 
CLEARANCE for all information within the 
system; (b) formal access approval and 
signed nondisclosure agreements for all 
the information stored and/or processed 
(including all compartments, subcompart- 
ments, and/ or special access programs); 
and (c) a valid need-to-know for all infor- 
mation contained within the IS. When in 
dedicated security mode, a system is specif- 
ically and exclusively dedicated to and 
controlled for the processing of one partic- 
ular type or CLASSIFICATION of information, 
either for full-time operation or for a spec- 
ified period of time. 

default classification Temporary CLASSI- 
FICATION reflecting the highest CLASSIFICATION 
being processed in an IS. DEFAULT CLASSIFICA- 
TION is included in the caution statement 
affixed to an object. 

Defense Advanced Research Projects 
Agency A central research and develop- 
ment organization for the Department of 
Defense (DoD). This U.S. government 
agency funded ARPANET. More details 
about Defense Advanced Research Projects 
Agency (DARPA) are available at http;/ / 
www.darpa.mil. 


Defense Information Infrastructure 

Connects U.S. DoD mission support, com- 
mand and control, and intelligence com- 
puters. It is an interconnected system of 
computers, communications, data applica- 
tions, people, training, and other support 
structures serving the DoD’s needs. 

degaussing Procedure that reduces the 
magnetic flux to virtually zero by applying 
a reversing magnetic field. Also called 
demagnetizing. 

delegated accrediting authority * r 

designated approving authority. 

delegated development program 

INFOSEC program in which the director 
of the National Security Agency delegates, 
on a case-by-case basis, the development 
and/ or production of an entire telecommu- 
nications product, including the INFOSEC 
portion, to a lead department or agency. 

delegation Giving some of your rights 
to another person or process. 

demon dialer A system that can be pro- 
grammed to repeatedly dial the same 
phone number or a list of phone numbers. 

demon process daemon process. 

denial of service attack An attack 

made on a computer system that denies a 
victim’s access to a particular service. The 
victim may be a single server, multiple 
servers, a router, or a network of comput- 
ers. Examples of DENIAL OF SERVICE (DoS) 
ATTACK include e-mail bombing and TCP 
SYN flooding, where an intruder sends a 
sequence of connection requests, that are 
TCP messages with SYN bit set to the tar- 
get system to overflow the available buffer 
space. 

dependability Defined with respect to 
some set of properties, a measure of how 
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or whether a system can satisfy those 
properties. 

dependence A subject is said to depend 
on an object if the subject may not work 
properly unless the object (possibly an- 
other subject) behaves properly. One sys- 
tem may depend on another system. 

depot maintenance full 

MAINTENANCE. 

derf Unauthorized and malicious use of 
a terminal or a console that has been left 
unattended and a user has not logged off 
from a terminal or the console. 

DES Data Encryption Standard. 

descriptive top-level specification 

Top-level specification written in a natural 
language (e.g., English), an informal design 
notation, or a combination of the two. DE- 
SCRIPTIVE TOP-LEVEL SPECIFICATION, required for 
a class B2 or B3 (as defined in the ORANGE 
Book, Department of Defense Trusted Com- 
puter System Evaluation Criteria, DoD 
5200.28-STD) information system, com- 
pletely and accurately describes a TRUSTED 
COMPUTING BASE. See also FORMAL TOP-LEVEL SPECI- 
FICATION. 

designated accrediting authority 

DESIGNATED APPROVING AUTHORITY. 

designated approving authority Offi- 
cial with the authority to formally assume 
responsibility for operating a system at an 
acceptable level of risk. This term is syn- 
onymous with DESIGNATED ACCREDITING AU- 
THORITY and DELEGATED ACCREDITING AUTHORITY. 

design controlled spare part Part or 
subassembly for COMSEC EQUIPMENT or de- 
vice with an NSA (U.S.) controlled design. 

design documentation Set of docu- 
ments, required for TRUSTED COMPUTER SYS- 
TEM Evaluation Criteria (TCSEC) classes Cl 


and above (as defined in the Orange Book, 
U.S. Department of Defense TRUSTED COM- 
PUTER System Evaluation Criteria, DoD 
5200.28-STD), whose primary purpose is 
to define and describe the properties of a 
system. As it relates to TCSEC, design 
documentation provides an explanation of 
how the security policy of a system is 
translated into a technical solution via the 
TRUSTED COMPUTING BASE (TCB) hardware, 
software, and firmware. 

dial back Synonymous with CALL BACK. 

dictionary attack An attempt to break a 
system or guess a password or a key by us- 
ing a dictionary of common keys. 

Diffie-Hellman key exchange A 

method of establishing a shared key over 
an insecure medium. This public-key algo- 
rithm was first published in a seminal pa- 
per [WD76b] by W. Diffie and M.E. 
Heilman. This algorithm depends for its 
effectiveness on the difficulty of computing 
discrete logarithms. A typical scenario us- 
ing Diffie-Hellman key exchange is given in 
Figure D2 (a), and an outline of the algo- 
rithm is given in Figure D2 (b). Because 
X A and X B are private, a potential attacker 
has only p, a, Y A , and Y Bl and the attacker 
has to take discrete logarithms to find the 
key. 

digest 1 A unique message fingerprint gen- 
erated using a mathematical hash function. 
Synonyms are HASH, MESSAGE HASH, and 
MESSAGE DIGEST. 

Digital Millennium Copyright Act Digi- 
tal Millennium Copyright Act (DMCA) im- 
plements the two World Intellectual Prop- 
erty Organizations (WIPO) treaties, the 
WIPO copyright treaty and the WIPO 
Performances and Phonograms Treaty. It 
was signed into law on October 28, 1998. 
DMCA provides provisions related to the 
circumvention of copyright protection sys- 
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User A User 8 





Generate random 

Xa<P 


Generate random 

X B < p 


(1) 


Y a = a^ A mod p 


Vg = mod p 





(2) 


K = (Yg ) mod p 

K = (Y a ) Xb mod p 





i 


(b) 


r > 

User A and User 8 wish to exchange key 

Global Public Key 

There are two publicly known numbers, a prime number p and an integer a. 
a < p and a is a primitive element of p. 

User A Key Generation 

User A selects a private key X^ X^< p 

Calculate Public key = a^A mo d p 


User B Key Generation 

User A selects a private key Xg independent of A Xg < p 
Calculate Public key Vg Yg = a^B mod p 


Each side keeps the X value private and makes the V value publicly 
available to the other side. Both A and 8 now compute key K (see below), 
and this key K is identical for both users. 

Generation of Secret Key by User A and User B 

User A Secret Key User 8 Secret Key 

K= (Vg)^ mod p K = [Y^)Xb mod p 


FIGURE D2. (a) A protocol showing use of Diffie-Hellman key exchange, (b) Diffie-Hellman algorithm. 
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terns, fair use in a digital environment, and 
online service provider (OSP) liability. It 
creates two new prohibitions in Title 17 of 
the U.S. code related to circumvention of 
technological measures used by copyright 
owners to protect their work and on tam- 
pering with copyright management infor- 
mation, It adds civil remedies and criminal 
penalties for violations. 

The bill provides exceptions to prohibi- 
tions in the bill for law enforcement, intel- 
ligence, and other governmental activities, 
and there are six additional exceptions: 
nonprofit, library, archive and educational 
institution exception, reverse engineering, 
encryption research, protection of minors, 
personal privacy, and security testing. 

NOTE: The U.S. Copyright Office Summary of the 
Digital Millennium Copyright Act of 1998 is avail- 
able from http:/ / lcvoeb.loc.gov/ copyright /legislation/ 
dmca.pdf. This memorandum provides an overview of 
the law’s provisions and briefly summarizes each of 
the five titles of the DMCA. 

Digital Music Access Technology The 

Digital Music Access Technology (DMAT) 
is a trademark for products that were de- 
veloped with SDMI specifications. 

digital signature A block of data that is 
appended to a message and used to ensure 
message originator authenticity, integrity, 
and to provide NONREPUDIATION. Signature 
creation takes as its input the message and 
a private signature key and generates a sig- 
nature. The verification algorithm takes as 
its input the message (unless a scheme with 
message recovery is used), the signature, 
and a public verification key, and returns 
an accept/ reject answer. 

NOTE: The common explanation of signing as “ en- 
cryption with the private key” is misleading and 
would at best ft RSA signatures. A convention is 
emerging whereby digital signatures refer to the mathe- 


matical scheme while electronic signatures refer to 
schemes linking documents to a (legal) person. 

Digital Signature Algorithm A public- 
key algorithm developed by the National 
Security Agency (U.S.) and based on the 
ElGamal signature scheme for producing a 
digital signature. 

Digital Signature Standard A U.S. 
government standard based on the DSA, 
RSA, and ECDSA. 

Dll Defense Information 
Infrastructure. 

directory service A service provided on 
a computer network that allows one to 
look up addresses (and perhaps other in- 
formation such as CERTIFICATES) based on 
names or other attributes. 

direct shipment Shipment of COMSEC 
MATERIAL directly from NSA (U.S.) to user 
COMSEC ACCOUNTS. 

disaster recovery plan contin- 

gency PLAN. 

discrete logarithm problem A discrete 
logarithm is the inverse arithmetic opera- 
tion of modular exponentiation, that is, 
finding x where a * = b modulo rt. Public 
key CRYPTOSYSTEMS use the fact that modu- 
lar exponentiation is a computationally 
easy problem, and finding x (discrete log- 
arithm) is a computationally hard prob- 
lem. The Diffie— Heilman algorithm uses 
discrete logarithms to define public and 
private key pairs, 

discretionary access controls Access 
CONTROL model, where access rights to the 
system resources are defined for each user 
of the system. Most commonly used form 
is ownership based, where the owner of a 
resource can decide who can access this re- 
source and at what mode. Outside the 
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Login certificate, A( authenticator 


Node 1 

Timestamp encrypted by Node 1 
Public Encryption key (if mutual 
authentication) 

Node 2 





t - A is the encrypted signed Public Key for Node 1 


FIGURE D3. Illustration of a DASS 
AUTHENTICATION. 


military environment, they are usually sim- 
ply referred to as ACCESS CONTROLS. 

distinguished name Globally unique 
identifier representing an individual’s 
identity. 

Distributed Authentication Security 
Service Distributed Authentication Secu- 
rity Service (DASS) is a public KEY-based au- 
thentication protocol developed at Digital 
Equipment Corporation and documented 
in RFC 1507. See Figure D3. 

DASS is an architecture; the actual 
product name based on DASS is SPX (pro- 
nounced Sphinx). In the DASS architecture, 
a certification hierarchy follows a naming 
hierarchy. One CA is responsible for one 
or more nodes in the naming hierarchy. A 
CA may sign for parents and children may 
also cross certify, allowing one CA to sign 
a certificate for another CA. 

DASS uses X.509 syntax for certificates 
and uses a CERTIFICATE DISTRIBUTION CENTER 
(CDC) for the distribution of certificates. 
This system stores certificates and en- 
crypted private keys. To get the encrypted 
private keys, a password-based AUTHENTICA- 
TION exchange is required. 


Distributed Computing Environment 

A group of programs and protocols stan- 
dardized by the Open Software Founda- 
tion built atop a cryptographically pro- 
tected REMOTE PROCEDURE CALL protocol. 

distributed denial of service A denial 
OF SERVICE ATTACK that is simultaneously ac- 
tivated from many different points on a 
network. These points of origin may be 
geographically widespread. The combined 
effect of these attacks is potentially more 
devastating than a DENIAL OF SERVICE ATTACK. 

DMAT Digital Music Access 
Technology. 

DMCA ■*" Digital Millennium Copyright 
Act. 

DNS Domain Name System. 

DNSSEC The protocol DNSSEC provides 
security extensions to the DNS to assure 
data integrity or AUTHENTICATION. DNSSEC 
provides data integrity and authentication 
services to security-aware resolvers or ap- 
plications through the use of CRYPTOGRAPHIC 
digital signatures. Security can be provided 
even through non-security-aware DNS serv- 
ers in many cases. See RFC 2065 for more 
details of this protocol. 

DNS spoofing Assuming the DNS name 
of another machine with malicious intent. 
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FIGURE D4. An example illustrating DOMAIN 
Name System. 


DNS SPOOFING may be done by either cor- 
rupting the cache of a system or by com- 
promising the DNS of a valid DOMAIN. 

DoD Trusted Computer System Evalua- 
tion Criteria Document containing the 
basic requirements and evaluation classes 
for assessing the degrees of effectiveness of 
hardware and software security controls 
built into an IS. This document, DoD 
5200.28 STD, is frequently referred to as 
the Orange Book. 

domain In the Internet, a part of the 
naming hierarchy. Syntactically, an internet 
system domain name consists of names 
(labels) separated by periods (dots), e.g., 
tundra.mpk.ca.us. 


Domain Name System The naming 
convention defined in RFC 1003. DOMAIN 
Name System names are often referred to as 
Internet addresses of Internet names. In 
Figure D4, a user types in a Web site ad- 
dress through a browser. The browser then 
engages the name server to translate this 
Web site name into a host address. The 
numbers 1 through 4 show the sequence 
of steps before the address goes to the 
TCP/IP protocol. This procedure is fol- 
lowed for each session of requests, re- 
sponses, and transfers. 

NOTE: For security extensions to DNS, see 

DNSSEC. 

dominate Term used to compare IS se- 
curity levels. Security level SI is said to 
dominate security level S2 if the hierarchi- 
cal CLASSIFICATION of SI is greater than or 
equal to that of S2 and the nonhierarchical 
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categories of SI include all those of S2 as 
a subset. 

dongle A hardware component that typi- 
cally attaches to a PC’s parallel port (on a 
Macintosh computer it attaches to the 
ADB port) to control access to an applica- 
tion on a computer, 

DoS ■*" DENIAL OF SERVICE ATTACK. 

DOS Disk Operating System (as in MS- 
DOS for personal computers). 

dotted decimal notation The syntactic 
representation of a 32-bit integer that con- 
sists of four 8-bit numbers written in base 
10 with periods separating them. Used to 
represent IP addresses in the Internet, such 
as 192.67.67.20. 

download To transfer information such 
as a file or data over a network from a re- 
mote system to a local device, usually disk. 


Transferring in the reverse direction is 
called uploading. This view assumes the 
network at the top and the individual com- 
ponent at the bottom. 

drop accountability Procedure under 
which a COMSEC ACCOUNT custodian ini- 
tially receipts for COMSEC MATERIAL and 
then provides no further accounting for it 
to its central office of record. Local AC- 
COUNTABILITY of the COMSEC MATERIAL may 
continue to be required. See also ACCOUNTING 
LEGEND CODE. 

DSA w Digital Signature Algorithm. 
DSS Digital Signature Standard. 

DTD w DATA TRANSFER DEVICE. 

dynamic web page Contents in a DY- 
NAMIC WEB PAGE are based on a user’s re- 
quest and can be dynamically generated by 
a program, for example by a CGI script. 
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eavesdrop Passive attack where the at- 
tacker listens in on a conversation without 
the knowledge or consent of the communi- 
cating parties. 

EBCDIC Extended Binary Code Deci- 
mal Interchange Code. 

ebXML A set of specifications initiated 
by the United Nations (UN/CEFACT) 
and OASIS to provide an electronic busi- 
ness framework. These specifications are 
the forerunner of the EDI (Electronic Data 
Interchange) standard. These specifica- 
tions are meant for global use and are 
based on public standards like HTTP, 
TCP/IP, MIME, UML, and XML. ebXML 
is a programming language and is 
computing-platform-independent. 

These specifications are modular, and 
each specification set can be implemented 
as stand-alone and individually or may 
be combined in many ways by businesses 
and organizations following the ebXML 
standard. 

The technical specifications of ebXML 
consist of five main areas: (1) business pro- 
cesses and information model, (2) company 
profile, (3) messaging services, (4) registry 


and repository, and (5) collaborative partner 
agreements. For more details, see the infor- 
mation at http:// www.ebXML.org. 

ECB ELECTRONIC CODE BOOK. 

ECC ELLIPTIC CURVE CRYPTOGRAPHY. 

ECDSA ■*" ELLIPTIC CURVE DIGITAL SIGNA- 
TURE ALGORITHM. 

ECHELON A commonly used term, very 
hot in European politics, refers to an auto- 
mated global interception and relay system 
supposed to be operated by the intelligence 
agencies of the United States, the United 
Kingdom, Canada, Australia, and New 
Zealand. There is no official confirmation 
of the existence of ECHELON, and the fol- 
lowing information is speculative. A secret 
listening agreement, called UKUSA (UK- 
USA), assigns parts of the globe to each 
participating agency. It is suggested that 
ECHELON is capable of intercepting and 
processing many types of transmissions 
throughout the globe and may intercept as 
many as 3 billion communications every 
day, including phone calls, e-mail messages, 
Internet downloads, satellite transmissions, 
and so on (Kevin Poulsen, Echelon Re- 


EDE 


vealed, ZDTV, June 9, 1999). More de- 
tails are available at http:// www.aclu.org/ 
echelonwatch/. 

EDE encrypt/decrypt/encrypt. 

EES Escrow Encryption Standard. 

EGP Exterior Gateway Protocol. 

EKMS Electronic Key Management 
System. 

electronically generated key A key 

generated by the mechanical or electronic 
introduction of a seed key into a COMSEC 
device. The desired key is produced by us- 
ing the seed key and a software algorithm 
contained in the device. 

electronic code book A method of us- 
ing a block encryption scheme to encrypt a 
large message. It is the most straightfor- 
ward method, consisting of independently 
ENCRYPTING each PLAINTEXT block. 

Electronic Digital Signature Act •* r 

E-Sign Act. 

Electronic Signature Directive A Euro- 
pean Union (EU) directive stipulating that 
electronic signatures should become as le- 
gally valid as handwritten signatures. The 
directive is being implemented in the na- 
tional laws of EU member states. 

Electronic Key Management System 

The U.S. government’s group of systems 
being developed to automate electronic key 
generation, distribution, use, destruction, 
etc., and to manage other COMSEC MATERIAL. 

electronic messaging services 

Interpersonal messaging services meeting 
specific requirements that make them ap- 
propriate for conducting official govern- 
ment business. 

electronic signature •* r digital 

SIGNATURE. 


electronic wallet Software that pro- 
cesses, stores, and provides access to card- 
holders’ financial information, including 
credit card data and digital account IDs. 

electronic warfare Use and control of 
electromagnetic spectrum for military pur- 
poses to conduct warfare or ATTACK or de- 
fend against an ADVERSARY. 

EIGamal A public key cryptographic sys- 
tem whose security depends on the diffi- 
culty of computing discrete logarithms. It 
is best known for its method of computing 
DIGITAL SIGNATURES, though the specification 
includes a technique for encryption as well. 
Named after its inventor Taher EIGamal. 

elliptic curve cryptography Public key 

CRYPTOGRAPHY systems whose security is 
based on the intractability of the ELLIPTIC 
CURVE DISCRETE LOGARITHM problem. 

elliptic curve digital signature 
algorithm The elliptic curve analogue of 
DSA that has been standardized by ANSI, 
IEEE, and NIST. 

elliptic curve discrete logarithm A 

computationally harder variant of the dis- 
crete logarithm problem. Systems that use 
ELLIPTIC CURVE DISCRETE LOGARITHM can use 
smaller key sizes to provide the same level 
of computational security as systems based 
on the discrete logarithm problem, 

emanations Electrical and electromag- 
netic signals emitted from electrical equip- 
ment and transmitted through the air or 
another conductor. Also called EMISSIONS. 

embedded computer Computer system, 
usually a microprocessor-based component, 
that is part of a larger special-purpose sys- 
tem. For example, airplanes, cars, GPS re- 
ceivers, and videocassette recorders contain 
embedded computer systems. 

embedded cryptographic system 

Cryptosystem whose task is to perform a 
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function that is a crucial element of a 
larger system or subsystem. 

embedded cryptography Cryptogra- 
phy engineered into a system that is not 
typically CRYPTOGRAPHIC. 

emissions emanations. 

emissions security Protection designed 
to deny unauthorized persons information 
derived from the interception and analysis 
of COMPROMISING EMANATIONS from com- 
puters, monitors, printers, and other infor- 
mation technologies. 

encapsulating security payload A 

part of the IPsec virtual private networking 
protocol used to provide AUTHENTICATION, 
CONFIDENTIALITY, or integrity in an IP data- 
gram packet. See RFC 2406. See also INTER- 
NET PROTOCOL SECURITY. 

encapsulation The technique used by 
layered protocols in which a layer adds 
header or trailer information to the data. 
For example, a packet would contain a 
header from the physical layer, followed by 
a header from the network (IP), followed 
by a header from the transport layer (TCP), 
followed by the application protocol data. 

encipher To encrypt. To transform 
PLAINTEXT into CIPHERTEXT using an algorithm 
and secret key. See Figure C5 (cipher 
feedback). 

encode To convert plaintext to ciphertext. 

encrypt To scramble information so that 
only someone knowing the appropriate key 
can obtain the original information 
(through DECRYPTION). 

encrypt/decrypt/encrypt A method of 
making a secret key scheme more secure 
using multiple keys. The technique is to 
first ENCRYPT the message with one key, 
then do a DECRYPTION with a different key 


on the resulting CIPHERTEXT, and finally EN- 
CRYPT the result with either the first key 
used or a third key. This method has the 
advantage that it is backward compatible 
with systems using only one key, by using 
three copies of the same key. 

encryption algorithm Series of steps 
that uses a key to transform the data so 
that the original data is rendered unintelli- 
gible to anyone without the appropriate DE- 
CRYPTION key. 

end-item accounting Accounting for all 
the accountable components of a COMSEC 
EQUIPMENT configuration by a single short 
title. 

endorsed for unclassified crypto- 
graphic item Unclassified CRYPTOGRAPHIC 
EQUIPMENT that has a U.S. government clas- 
sified CRYPTOGRAPHIC LOGIC and is endorsed 
by the NSA (U.S.) for the protection of 
national security information. See also TYPE 2 
product. 

endorsement NSA (U.S.) approval of a 
commercially developed product to safe- 
guard national security information. 

end system A system that contains ap- 
plication processes capable of communicat- 
ing through all seven layers of TCP/IP pro- 
tocols. Equivalent to Internet host. 

end-to-end encryption A type of en- 
cryption in which a message is ENCRYPTED 
from point of origin to point of destina- 
tion. See Figure El. 

end-to-end security Securing informa- 
tion in an IS from point of origin to point 
of destination. 

entity OSI terminology for a layer proto- 
col machine. An entity within a layer per- 
forms the functions of the layer within a 
single computer system, accessing the layer 
entity below and providing services to the 
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FIGURE El . End-lo-end encryption. 


layer entity above at local service access 
points. 

entrapment Deliberate insertion of flaws 
in an IS for the purpose of detecting sabo- 
tage attempts. 

environment Conglomeration of exter- 
nal factors that affect the development, 
operation, and maintenance of an IS. 

EPL Evaluated Products List. 

erasure Process intended to render 
stored data irretrievable by normal means, 

escrow To hold something in safe- 
keeping. 

Escrow Encryption Standard U.S. 
government standard for telephone com- 
munications specifying the Skipjack EN- 
CRYPTION algorithm and support for the 
Law Enforcement Access Field (LEAF). The 
LEAF allows DECRYPTION in government- 
authorized wiretaps. 

escrow service An independent party 
who keeps something (usually an auction 
buyer’s payment) until the buyer receives 
the appropriate item from the seller. 

E-Sign Act The U.S. Federal Electronic 
Signature in Global and National Com- 
merce Act, gives the electronic signature and 
Internet-conveyed record the same legal 
standing as a pen-and-paper document. To 
be legally binding, this act requires con- 
sumers to agree to electronically signed 


contracts and consent to receiving records 
over the Internet. Some notices, such as 
evictions, health insurance lapses, etc., must 
still come in the form of paper. The legis- 
lation does not prescribe any particular 
technology to verify an electronic signature; 
security protocols can be as simple as a 
password or may consist of emerging new 
technologies, such as thumbprint scanners. 

This act will advance e-commerce by fi- 
nalizing sales via computers. For example, 
consumers who shop online for a new car 
or a home mortgage can seal the deal over 
their computers. 

ESP ENCAPSULATING SECURITY PAYLOAD. 

Ethernet A widely used local area net- 
work technology invented at the Xerox 
Corporation Palo Alto Research Center. 
The medium is a passive coaxial cable and 
uses CSMA/CD access technology. Ethernet 
now refers to the whole family of IEEE 
802 standards: thin Ethernet, thick Ether- 
net, wireless Ethernet, fast Ethernet. 

Euclidean algorithm An algorithm to 
find the GREATEST COMMON DIVISOR of two 
numbers. It can also be used to compute 
multiplicative inverses in modular arith- 
metic. 

Evaluated Products List Equipment, 
hardware, software, and/ or firmware evalu- 
ated by the NATIONAL COMPUTER SECURITY 
CENTER (NCSC) in accordance with DoD 
(U.S.) TCSEC and found to be technically 
acceptable. 

NOTE: Many countries maintain EPLs,for exam - 

pie the latest EPL for Defense Signal Directorate of 
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Australia is available at http://www.dsd.gov.au/ 
iitfosec / aisep / TPT.html. The U.S. TPL hy vender 
and hy class are available at http:/ / www. radium. 
ncsc.mil/tpep/ epl/. The United Kingdom list of 
evaluated products is available at http: / / www.itsec. 
gov.uk/. 

event An occurrence that might affect 
the performance of an IS. 

EW ELECTRONIC WARFARE. 

executive state An operational state of 
an IS in which certain privileged instruc- 
tions may be executed. Synonymous with 
SUPERVISOR STATE. 

exercise key Key whose sole function is 
to safeguard communications transmitted 
through the air during military or orga- 
nized civil training exercises. 

exploitable channel Channel in which 
it is possible to violate the security policy 
of an IS and that can be used or detected 
outside of the TRUSTED COMPUTING BASE. See 
also COVERT CHANNEL. 

exploder (1) A system to expand an 
item (usually many items are combined to 
form a single item) into its components. 
(2) Component of an electronic mail sys- 


tem that takes a single message addressed 
to a distribution list and turns it into 
many mail messages to the individual 
recipients. 

export Information transfer from one 
system to another, usually from a trusted 
to an untrusted system. 

Extended Binary Code Decimal Inter- 
change Code A code developed by IBM 
for encoding letters, numerals, and punctu- 
ation marks as numbers. Now rendered al- 
most obsolete by ASCII and UNICODE. 

Exterior Gateway Protocol A reach- 
ability routing protocol used by gateways 
in a two-level internet. EXTERIOR GATEWAY 
PROTOCOL (EGP) is used in the Internet 
core system. See also GATEWAY. 

External Data Representation A stan- 
dard for machine-independent data struc- 
tures developed by Sun Microsystems. 
Similar to ASN. 1 . 

extraction resistance Capability of 
CRYPTO-EQUIPMENT or secure telecommunica- 
tions equipment to resist efforts to extract 
a key. 
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fail safe Property of a system in which 
any failure will leave the system in a safe 
state. The system may not operate, but it 
will not be in an unsafe state. When hard- 
ware or software failure is detected, pro- 
grams and processing systems are automati- 
cally protected. 

fail secure Property of a system in 
which any failure will leave the system in a 
secure state. The system may not operate, 
but it will not be in an insecure state. 

fail soft Selective termination of affected 
unnecessary processing when it has been 
determined that hardware or software is 
about to fail. 

failure access Unauthorized access 
to data after the failure of hardware or 
software. 

failure control Method of detecting 
when hardware or software is about to tail 
and providing FAIL SAFE or FAIL SOFT recovery. 

false negative (1) In intrusion detec- 
tion, when a system does not issue an ALERT 
on intrusion because based on the internal 
monitoring procedures, the intrusion action 
appears to be nonintrusive. (2) The term 


also applies to biometric AUTHENTICATION and 
other measurement processes. In AUTHENTICA- 
TION, a FALSE NEGATIVE means that a legiti- 
mate user is not AUTHENTICATED correctly. 

false positive (1) In intrusion detec- 
tion, when a system falsely issues an ALERT, 
treating a legitimate action as a system in- 
trusion. (2) In BIOMETRIC authentication, 
when a user is wrongly accepted as legiti- 
mate. 

NOTE: In BIOMETRIC authentication, a false 
positive is worse than a false negative because it means 
that a person has been positively AUTHENTICATED 
who should not have been. 

Federal Information Processing 
Standard One of a series of U.S. gov- 
ernment documents developed by NIST 
specifying a standard of various aspects of 
data processing, including the Data ENCRYP- 
TION Standard (DES) and the Advanced En- 
cryption Standard (AES). 

Federal Internet Exchange Points Fed- 
eral Internet Exchange Point (FIX) is a BGP 
peering point between federal (U.S.) and 
commercial networks. Used by the U.S. 
government to exchange data primarily 


fetch protection 


from the military network and NASA Sci- 
ence net to the Internet. 

fetch protection Restriction provided by 
IS hardware to prevent one user’s program 
from gaining access to data in another 
user’s segment of storage. 

file protection Collection of processes 
and procedures that prohibit unauthorized 
access, CONTAMINATION, elimination, modifi- 
cation, or destruction of a file or any of its 
contents. 

file security Method of limiting access 
to computer files to authorized users only. 

File Transfer Protocol The Internet 
protocol used to transfer files between 
hosts. File Transfer Protocol (FTP) is an 
application-level protocol, which uses two 
parallel TCP connections: (1) control con- 
nection and (2) data connection, for file 
transfer. Control connection is used to 
send control information between the two 
hosts. A data connection is established 
only when the user requests a file transfer 
to and from the server. See Figure FI. 

fill device COMSEC device that transfers 
or stores a key in electronic form or that 
inserts a key into CRYPTO-EQUIPMENT. 

filter (1) To sift through messages or 
data. For example, filters are applied at the 
IP layer to block any kind of traffic from 
or to an IP address. (2) Software that auto- 
matically blocks e-mail messages sent from 
preset addresses or about certain subjects. 

fingerprint system A biometric system 
in which a fingerprint pattern is matched 
with a stored pattern or a template for 
AUTHENTICATION. 

FIPS Federal Information Processing 
Standard. 

FIREFLY Protocol of key management 
based on PUBLIC KEY CRYPTOGRAPHY. 


firewall Systems that act as a GATEWAY 
between two networks to enforce an access 
policy. This may be hardware or software 
to enforce a boundary between networks. 
The purpose of a firewall is to prevent un- 
authorized access to networks and com- 
puter systems. 

firmware A program recorded in perma- 
nent or semipermanent computer memory. 

FIRST Forum of Incident Response 
and Security Teams. 

fishbowl A monitoring technique in 
which a user under surveillance is con- 
tained and isolated in a system to gain in- 
formation about the user. See also HONEY POT. 

FIX Federal Internet Exchange 
Points. 

fixed COMSEC facility COMSEC facility 

in an immobile structure or on a ship. 

flaming Sending a nasty message across 
the Internet. 

flaw Error in an IS that may allow a 
breach of security. 

flaw hypothesis methodology System 
analysis and penetration technique in 
which a list of hypothetical flaws is created 
based on the analysis of the specification 
and documentation for an IS. This list is 
prioritized on the basis of the estimated 
probability that a flaw exists, on the ease 
of removing the flaw, and on the amount 
of control or compromise the removal 
would provide. This list is used to perform 
penetration testing of a system. 

flooding Insertion of a large quantity of 
data that may result in a denial of service. 
In Figure F2, node A sends packets to all 
lines that it is connected to (node B and 
node D) in an uncontrolled fashion. The 
excess packets result in a DENIAL OF SERVICE 
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Control Connection 


FIGURE F 1 . An example of an FTP session. 


ATTACK by clogging the lines and draining 
the resources of nodes B and D. 

fork bomb A piece of code that recur- 
sively spawns (“forks”) copies of itself. It 
very quickly proliferates to so many copies 
that all the system resources are consumed. 

formal (1) Having a strict mathematical 
or logical basis. (2) Following a specific set 
of rules. 

formal access approval Documented 
approval by a data owner, which allows 
others access to a particular category of 
information. 

formal development methodology 

Development (of software) strategy that 
meets design specifications. 

formal proof A mathematical argument 
that logically justifies each proof step and 
proves a theorem or set of theorems. These 
formal proofs provide A1 and beyond A1 
assurance under the DoD TRUSTED COMPUTER 
System Evaluation Criteria (Orange Book). 



FIGURE F2. A is flooding both B and D with packets. 


formal security policy model A state- 
ment of a security policy that is mathemat- 
ically precise. Typically, a formal security 
model defines what it means to be secure, 
the initial state of the system, and how the 
system changes state. In order for a system 
to be shown to be secure, the initial state 
and all possible subsequent states must be 
proven to remain secure. 

formal top-level specification Top- 
level specification written in a FORMAL 
mathematical language so that theorems 
can be hypothesized and formally proven. 
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FIGURE F3 . An example of an HDLC frame. 


formal verification Using formal 
PROOFS to show how the formal specifica- 
tion of a system and a formal policy model 
(design verification) or the formal specifi- 
cation and its high-level program imple- 
mentation (implementation verification) are 
compliant. 

form factor The outward appearance of 
a function, for instance the number and 
size of the input and the number and size 
of the outputs. In computing, this fre- 
quently refers to the shape and size of a 
piece of hardware; e.g., the form factor of a 
CD-ROM drive may be “5.25 inch drive 
bay compatible.” 

FORTEZZA card A low-cost crypto- 
graphic hardware implementation for digital 
signature and encryption services for the 
desktop. The FORTEZZA crypto card was 
developed by the U.S. NATIONAL SECURITY 
Agency (NSA) and implements the “key es- 
crow” mechanism outlined in Federal Infor- 
mation Processing Standard (FIPS)-185. 

The NSA will no longer implement the 
FIPS and will implement the transition to 
key recovery. The FORTEZZA technology 
provides CONFIDENTIALITY, AUTHENTICATION, 
message integrity, and NONREPUDIATION. 

Many commercial implementations of the 
FORTEZZA card are now available. 

Forum of Incident Response and 
Security Teams This is a group of secu- 
rity practioners from government, commer- 
cial, and academic organizations who re- 
spond to COMPUTER SECURITY INCIDENTS. Its 


aim is to “foster cooperation and coordina- 
tion in incident prevention, to prompt 
rapid reaction to incidents, and to promote 
information sharing among members and 
the community at large.” More informa- 
tion is available at http:/ / www.first.org. 

fragmentation The process in which an 
IP DATAGRAM is broken into smaller pieces 
to fit the requirements of a given physical 
network. The reverse process is termed reas- 
sembly. See also MAXIMUM TRANSMISSION UNIT. 

frame The unit of transmission in a data 
link layer protocol. It consists of a data 
link layer header followed by a packet. Fig- 
ure F3 gives an example of an HDLC 
(High-Level Data Link Control) frame. 

frequency hopping Repeated switching 
of frequencies to prevent unauthorized 
interception or jamming during radio 
transmission, 

front-end security filter Security filter 
kept separate from the rest of an IS to 
protect system integrity. Synonymous with 
FIREWALL. 

FTP File Transfer Protocol. 

full maintenance Complete diagnostic 
repair, modification, replacement and over- 
haul of INFOSEC equipment, also known 
as DEPOT MAINTENANCE (U.S.). See also LIMITED 
MAINTENANCE. 

functional proponent network 

SPONSOR. 

functional testing A segment of security 
testing in which it is shown whether adver- 
tised security mechanisms of an IS will 
work under operational conditions. 
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gateway A node connected to two or 
more administratively distinct networks 
and/or SUBNETS to which hosts send DATA- 
GRAMS to be forwarded. The original Inter- 
net term for what is now called ROUTER, or, 
more precisely, IP ROUTER. In modern us- 
age, the terms “gateways” and “application 
gateways” refer to systems that translate 
from some native format to another. Ex- 
amples include X.400 to/from RFC 822 
electronic mail gateways. See also ROUTER. 

GCD GREATEST COMMON DIVISOR. 

Generic Security Service Application 
Programming Interface Generic Secu- 
rity Service Application Programming Inter- 
face (GSS-API) is a CRYPTOGRAPHIC APPLICA- 
TION PROGRAMMING INTERFACE that specifies 
how applications, for example, communica- 
tion protocols can securely handle session 
communication, including AUTHENTICATION, 
data integrity, and data CONFIDENTIALITY. 

The GSS-API insulates applications from 
the specifics of underlying mechanisms 
making them portable. For example, 
GSS-API implementations are built on 
varied secret-key and public-key technolo- 
gies. More information of the current 


(Version 2) GSS-API definition is available 
in RFC 2078. 

GSS-API is also a part of the Open 
Group Common Environment Specifica- 
tion. Complementary API, such as GSS- 
IDUP specifies store-and-forward messag- 
ing, negotiation facility for selection of a 
common mechanism shared between peers, 
and of individual underlying GSS-API 
mechanisms. More details of GSS-IDUP 
are available in RFC 2479. 

Global System for Mobile 
Communications Global System for Mo- 
bile Communications (GSM) is an open, 
non-proprietary mobile telephone system 
that uses digital technology and time divi- 
sion multiple access transmission methods 
to provide international roaming capability. 
The same phone number can be contacted 
seamlessly in more than 170 countries us- 
ing GSM. Addition of GSM satellite roam- 
ing provides service access to areas where 
terrestrial coverage is not available. 

NOTE: In 1982 the Conference of European Posts 
and Telegraphs (CEPT) formed a study group called 
the Croupe Special Mobile ( GSM) to study and de~ 


55 


granularity 


velop a panEuropean public land mobile system. In 
1989 , the European Telecommunication Standards 
Institute (ETSIj took up the responsibilities of GSM 
and published (1990) the phase I of the GSM specie 
f cations. Commercial service was started in mid - 
1991 and its use expanded. In addition to Europe , 
the standard is common to South Africa , Australia ) 
and many Middle and Far East countries have chosen 
GSM. The acronym GSM now stands for Global 
System for Mobile telecommunications. More informal 
tion about GSM in North America can be found at 
http:/ / www.gsm-pcs.org/ . Other information about 
GSM can be found at GSM association site at 
http:/ / www.gsmworld.com. 

granularity The smallest level of clarity. 
The granularity of an ACCESS CONTROL MECH- 
ANISM refers to the smallest unit for which 
individual ACCESS CONTROLS can be set. In a 
database system, the ACCESS CONTROL granu- 
larity may be at the record level, or for a 
more richly featured database, the GRANULAR- 
ITY may be at the individual field level. 


greatest common divisor The largest 
integer that evenly divides each of a set of 
integers. 

group A set of users in a system, each of 
which might be given certain access rights 
by a security system. 

GSM Global System for Mobile 
Communications. 

GSS-API Generic Security Service 
Application Programming Interface. 

guard Limits information exchange be- 
tween systems. A guard can be a special- 
ized type of firewall, typically designed to 
connect between two SYSTEM HIGH networks 
operating at different CLASSIFICATIONS or 
compartments. For example, a guard be- 
tween a secret network and a confidential 
network will ensure that no secret infor- 
mation is transmitted to the confidential 
network. 
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hacker (1) Someone who plays with 
computers for the intellectual CHALLENGE. 
(2) Somebody who enjoys learning the de- 
tails of systems and to stretch the capabili- 
ties of systems as opposed to people who 
prefer to learn the necessary minimum to 
work on a system. (3) Someone who pene- 
trates security controls or explores comput- 
ers and networks with malicious intent. 

NOTE: Some writers ascribe definition (3) to the 
term CRACKER , so that the term HACKER applies 
only to people with no malicious intent, although now 
hacker and cracker are used interchangeably. 

hacking Unauthorized, possibly mali- 
cious attempts to bypass the security mech- 
anisms of computer systems and networks. 
See note (HACKER). 

hacking run Hacking that continues lor 
more than a 12-hour period. It usually 
continues outside normal working hours. 

handprint system A security system 
that requires a handprint pattern to be 
matched with a stored pattern. 

handshaking procedures The dialogue 
that allows two ISs to synchronize, iden- 
tify, and AUTHENTICATE each other. 


hard copy key Printed key lists, 
punched or printed key tapes, programma- 
ble read-only memories (PROM), or other 
physical material for keying. 

hardwired key A key that is perma- 
nently installed. 

hash A one-way function that takes an 
arbitrary-sized input and yields a fixed-size 
output. A HASH function is one-way if it is 
computationally infeasible to find an input 
that yields a given output. A HASH function 
is collision-free if no two inputs have the 
same output. A HASH function is collision- 
resistant if it is computationally infeasible, 
given one input, to find a second input 
such that both have the same output. Hash 
functions generally need to be collision- 
resistant. Synonym DIGEST. See Figure HI. 

Figure HI explains the operations of a 
HASH function. An input message M is bro- 
ken into separate predetermined fixed-sized 
blocks Mj, M 2 , . . . , M n . The HASH of M 
is the result of the application of a trans- 
formation, usually a compression function 
0> on each block of M. An initial value H 0 
is concatenated with M lt and the function 
0> is applied to produce Hj. The process 
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FIGURE Hi . Illustration of hashing. 


H, = 3> (M, || H i4 ) is repeated on all the 
blocks H . See also DIGEST. 

NOTE: Hash Junctions are usually not keyed , where 
as MACs based on hash Junctions are usually keyed \ 
eg., HMAC. 

hashing Computing a HASH TOTAL. 

hash total The value computed on data 
for finding errors or evidence of manipula- 
tion. See also CHECKSUM. 

hashword The memory address where 
HASH TOTAL is contained. 

high-risk environment Location or 
geographic area where an information sys- 
tem’s security equipment is not secure. 

header Control information at the be- 
ginning of a message, segment, datagram, 
packet, or block of data. 

high-threat environment high-risk 

ENVIRONMENT. 


high water mark An IS’s highest secu- 
rity level. 

hoax virus Warnings for viruses that do 
not exist. These warnings are usually trans- 
mitted through e-mail messages that are 
forwarded many times and contain pleas 
for the receiver to forward the warning to 
others. 

honey pot An IS environment specifi- 
cally constructed to lure hackers or crack- 
ers into attacking it, for the purpose of 
identifying them and observing them in ac- 
tion. This environment is generally isolated 
from the rest of the network (or system) 
to prevent accidental damage. This term 
was introduced in Cheswick and Bellovin’s 
book Firewall and Internet Security 
[WRC94], 

hop A direct communication channel be- 
tween two computers. In a complex com- 
puter network a message might take many 
hops between its source and destination. 

host (1) A computer in an internetwork 
environment that has access to other com- 
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puters on the Internet. Hosts are the pri- 
mary computers connected to the net- 
work, which besides contributing to the 
network load perform operations like run- 
ning user programs, compilers, and text 
editors. (2) In a mainframe environment a 
host is a mainframe computer to which 


terminals and workstations may be con- 
nected, and the host is used as a provider 
of services. 

human safety A necessary feature of a 
system to preserve personal and collective 
safety. 


59 



This page intentionally left blank 



IA INFORMATION ASSURANCE. 

IAB Internet Architecture Board. 

IANA Internet Assigned Number 
Authority. 

ICMP ■*" Internet Control Message 
Protocol. 

IDEA International Data Encryption 
Algorithm. 

identification An IS's method of recog- 
nizing an entity. 

identity token A physical object, such as 
a smart card or metal key, that AUTHENTI- 
CATES identity. 

identity validation Tests that an infor- 
mation system uses to identify users or 
resources. 

IDIOT ■*" Intrusion Detection in Our 
Time. 


operability for public-key technology. It 
covers such areas as key agreements, en- 
cryption, and signatures. 

IEEE 1363 defines three categories of 
public-key cryptographic algorithms: dis- 
crete logarithm, elliptic curves, and integer 
factorization. It also covers keys and pa- 
rameters in hybrid systems. 

NOTE: IEEE 1363 became a standard in the year 
2000. For more information about this standard , see: 
http://grouper.ieee.org/groups/l363/index.html. 


IESG *- 

Group. 

Internet Engineering Steering 

IETF 

Internet Engineering Task 

Force. 


IFCC 

Center. 

Internet Fraud Complaint 

IGP 

Interior Gateway Protocol. 

IKE 

INTERNET KEY EXCHANGE. 


IEEE Institute of Electrical and Elec- 
tronics Engineers. 

IEEE 1363 standard for public-key 
cryptography This standard aims to 
provide a common framework and inter- 


IMAP vulnerability A buffer overflow 
vulnerability that exists in some implemen- 
tations of IMAP (Internet Message Access 
Protocol) that allows an attacker to execute 
arbitrary code. 


imitative communications deception 


imitative communications deception 

Deception effected by an adversary’s tele- 
communications signals being injected with 
deceptive messages or signals. See also COM- 
MUNICATIONS DECEPTION and MANIPULATIVE 
COMMUNICATIONS DECEPTION. 

impersonation (1) A form of spoofing. 
(2) Pretending to be an authorized user to 
gain access to a system. Synonymous with 
MASQUERADING. 

implant An electronic device or the 
modification of electronic equipment in 
order to intercept information-bearing 
emissions. 

implementation A mechanism (in soft- 
ware, hardware, or both) for correctly real- 
izing a specified design. 

import The transfer of information from 
one system to another; usually refers to in- 
formation transfer from an untrusted sys- 
tem to a trusted system. 

inadvertent disclosure When an unau- 
thorized person unintentionally is granted 
access to information. 

I no Jo The System Development Corpo- 
ration’s specification and verification meth- 
odology, based on a nonprocedural state- 
transition specification language, Ina Jo, 
which incorporates user-supplied invariants 
to formally demonstrate that security prop- 
erties are met. 

incident An assessed event that could or 
does adversely affect an IS. 

incomplete parameter checking A 

system flaw caused by the failure of the 
operating system to completely check all 
parameters for ACCURACY and consistency, 
and which makes the system vulnerable to 
penetration. 

indicator An expected action taken by 
an ADVERSARY to prepare for an ATTACK. 


individual accountability (1) The posi- 
tive association of a user’s identity with the 
time, method, and degree of access to an 
IS. (2) An association of a user’s identity 
with certain actions performed on an IS. 
For example, there may be individual ac- 
countability for an e-mail sent, even if not 
for the actual login. 

inference channel Indirect information 
flow channel by which CLASSIFIED INFORMA- 
TION can be inferred from UNCLASSIFIED data 
and metadata, e.g., database dependencies, 
statistical correlation, etc. 

information assurance Ensuring the 
availability, integrity, AUTHENTICATION, CONFI- 
DENTIALITY, and NONREPUDIATION of informa- 
tion and information systems by incorpo- 
rating protection, detection, and reaction 
capabilities to restore information systems. 

information assurance red team A 

team that acts like an ADVERSARY to expose 
and exploit an IS’s vulnerabilities to see 
how the security posture can be improved. 

information environment Individuals, 
organizations, or systems that collect, pro- 
cess, or disseminate information, along 
with the information itself. 

information flow chart A diagram that 
indicates the flow of information within a 
system. Frequently used to access the po- 
tential for covert channels within a system. 
Information flow charts are helpful in en- 
suring that IS information transfers are 
made only from a lower security level ob- 
ject to an object of a higher security level. 

information label Label used in com- 
partmented mode workstations for describ- 
ing a particular item (subject or object), for 
example, a file, a window, or a process. An 
INFORMATION LABEL is similar to a SENSITIVITY LA- 
BEL, except that INFORMATION LABEL: 1. Provide 
additional information of how the item may 
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be managed, for example, it may be labeled 
“Eyes Only”, “Company Proprietary”, or 
“Public”; 2. Represent the sensitivity of the 
information whereas SENSITIVITY LABEL provides 
access marking, such as read or read-and- 
write; 3. Automatically change as the con- 
tent of the items changes, whereas SENSITIVITY 
LABEL do not automatically change with 
change in content. 

information level The security level im- 
plied by the CLASSIFICATION and categories 
on an information label. 

information operations (1) Operations 
that exploit or adversely affect an ADVER- 
SARY’S information content and systems 
while protecting one’s own. (2) Defending 
one’s own information and ISs, while at- 
tempting to affect the information and ISs 
of adversaries. 

information system The entire infra- 
structure, organization, personnel, and 
components for the collection, processing, 
storage, transmission, display, dissemina- 
tion, and disposition of information, 

information system security The pro- 
tection of information systems against un- 
authorized access to or modification of in- 
formation, whether in storage, processing, 
or transit, and against the denial of service 
to authorized users, including those mea- 
sures necessary to detect, document, and 
counter such threats. 

information system security equip- 
ment modification The modification of 
any fielded hardware, firmware, software, or 
portion thereof, under NSA (U.S.) CONFIG- 
URATION CONTROL. There are three classes of 
modifications: mandatory (to include hu- 
man safety); optional/ special mission mod- 
ifications; and repair actions. These classes 
apply to elements, subassemblies, equip- 
ment, systems, and software packages per- 


forming functions such as key generation, 
key distribution, message encryption, DE- 
CRYPTION, AUTHENTICATION, or those mecha- 
nisms necessary to satisfy security policy, 
labeling, identification, or ACCOUNTABILITY. 

information system security manager 

Head of COMPUTER SECURITY matters. 

information system security officer 

The person responsible for ensuring the se- 
curity of an information system from de- 
sign through disposal. Synonymous with 
SYSTEM SECURITY OFFICER. 

information system security product 

A security-related item, technique, or ser- 
vice of an information system. 

Information Technology Security Eval- 
uation Criteria Harmonized criteria de- 
veloped jointly by European nations to 
specify 6 levels of ASSURANCE. Becoming 
obsolete due to the adoption of the COM- 
MON Criteria. 

information warfare Information 
operations in times of conflict and war to 
promote specific actions to deny, exploit, 
corrupt, or destroy an enemy’s information 
and its functions. 

INFOSEC INFORMATION SYSTEM 

SECURITY. 

initialization vector A number used by 
the CBC, OFB, and CFB ENCRYPTION tech- 
niques to initialize the first round. Subse- 
quent rounds use the results of earlier 
rounds. 

initialize (1) To set the state of a system 
to its initial configuration. (2) To set the 
state of a CRYPTOGRAPHIC LOGIC process be- 
fore key generation, encryption, or any 
other operating mode. 

inspectable space The three- 
dimensional space surrounding equipment 
that processes CLASSIFIED and/ or sensitive 
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information within which TEMPEST exploi- 
tation is not considered practical or where 
the legal authority to identify and/ or re- 
move a potential TEMPEST exploitation ex- 
ists. Synonymous with ZONE OF CONTROL. 

Institute of Electrical and Electronics 
Engineers The Institute of Electrical and 
Electronics Engineers (IEEE) is a profes- 
sional society for the advancement of elec- 
trical and information technology and sci- 
ences. It also develops standards including 
those for networks and security. More in- 
formation about IEEE is available at 
http://www.ieee.org 

integrated services digital network 

Integrated services digital networks (ISDN) 
combine voice and digital network services 
in a single medium, making it possible to 
offer customers digital data services as well 
as voice connections through a single 
“wire.” The standards that define ISDN are 
specified by CCITT/ITU. 

In Figure II, the circuit switched, 
packet switched, dedicated point-to-point, 
and call services are brought together at an 
ISDN switch and accessed by a user 
through a common terminal. ISDN includes 
two levels of services: the basic rate inter- 
face and primary rate interface. Basic rate 
interface is meant for home and small 
businesses, and primary rate interface is 
meant for large-volume users. Both of these 
services include a number of B and D 
channels. Each B-channel (B stands for 
bearer) carries data, voice, and other ser- 
vices, and D-channel (D stands for delta) 
carries control and signaling information. 

integrity A condition in which data (or 
a system itself) has not been modified or 
corrupted without AUTHORIZATION. A system 
protects the integrity of data if it prevents 
unauthorized modification, as opposed to 
protecting the CONFIDENTIALITY of data, 
which prevents unauthorized disclosure. 


integrity check value A value such as a 
CHECKSUM, DIGEST, or DIGITAL SIGNATURE that 
can be used to detect (unauthorized) modi- 
fications made to an IS that might breach 
its INTEGRITY. 

interface (1) Common boundary where 
interactions occur between independent 
systems. (2) A part of the boundary 
around a system through which it interacts 
with its environment, which may include 
other systems. 

interface control document Technical 
design document that species an interface 
and identifies the authorities and responsi- 
bilities for ensuring its correct operation. 

interim approval A temporary authori- 
zation to process information in an IS 
on the basis of a preliminary security eval- 
uation. 

Interior Gateway Protocol The proto- 
col used to exchange ROUTING information 
between collaboration routers in the Inter- 
net. RIP and OSPF are examples of INTERIOR 
Gateway Protocol (IGP). 

intermediary Something that facilitates 
communication between parties that wish 
to communicate. 

intermediate system A system that is 
not an end system but that serves instead 
to relay communications between end sys- 
tems. See also REPEATER, BRIDGE, and ROUTER. 

International Data Encryption 
Algorithm A secret-key CRYPTOGRAPHIC 
scheme developed at the Institute for Sig- 
nal and Information Processing of the 
Swiss Federal Institute of Technology, Zu- 
rich, by James Massey and Xuejia Lai. See 
Figure 12. IDEA encrypts a 64-bit block of 
PLAINTEXT into a 64-bit block of CIPHERTEXT 
using a 128-bit key. The 128-bit key is ex- 
panded into 52 16-bit keys, K 1( K 2 , . . . , 

K 52 by chopping off 16 bits from left of 
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FIGURE ll . ISDN architecture. 



FIGURE l2. Illustration of International Data Encryption Algorithm. 
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the 128 bit key. The INTERNATIONAL Data 
Encryption Algorithm (IDEA) is performed 
in 17 iterations: Odd-numbered iterations 
use four keys, while even-numbered itera- 
tions use two keys. The procedure gener- 
ates the ENCRYPTED text over 17 iterations. 

International Organization for 
Standardization International Organi- 
zation for Standardization (ISO) is a feder- 
ation of national standards organizations 
from countries around the world. Estab- 
lished in 1947. ISO is located in Geneva, 
Switzerland, and is a nongovernmental orga- 
nization with a mission to promote the de- 
velopment of worldwide standards and re- 
lated activities. ISO develops and publishes 
international standards. More details about 
ISO can be found at http:/ /www.iso.ch. 

NOTE: There is a lack of correspondence between the 
name International Organization for Standards and 
its short form ISO ( not IOSf The word “ISO” is 
derived from Greek “isos } ” which means equal “Los” 
is the root of terms such as “ isometric ” and “ison- 
omy.” The line of thinking from “equal” to “stan- 
dard” led to the choice of “ISO” as the name of the 
organization. 

ISO is used around the world and thus 
avoids many acronyms resulting from the 
translation of “International Organization 
for Standardization” into different interna- 
tional languages, such as IOS in English 
and OIN (Organisation Internationale de 
Normalisation) in French, 

International Telecommunications 
Union An international organization that 
deals with standardization activities related 
to global communications networks. It was 
earlier called COMITE CONSULTATIF INTERNA- 
TIONAL Telephonique ET Telegraphique 
(CCITT). See also CCITT. 

International Traffic in Arms 
Regulations The collection of laws in 
the United States that regulate the export 


of defense services and defense technolo- 
gies. Designations of defense articles and 
defense services are based primarily on 
whether an article or service is deemed to 
be inherently military in character. There 
has been some controversy about applica- 
bility of International Traffic in Arms Regu- 
lations (ITAR) to sending encryption pro- 
grams outside the U.S. Encryption 
programs are treated as defense technology, 
and so their export in electronic form (for 
example, through e-mail or through the 
Web) may violate ITAR. 

Details of ITAR can be found at 
http:/ / www.epic.org/crypto/ export_ 
controls/ itar.html. 

Archives related to ITAR and export of 
encryption technology can be found at the 
Electronic Frontier Foundation Web site at 
http:/ / www.eff.org/pub/Privacy/lTAR_ 
export. 

internet An internet is a collection of 
networks tied into a network using an inter- 
net protocol. In general “internet” refers to 
any internet, and “Internet” (with a capital 
I) to the global Internet (see Figure 13(a)). 

The Internet is a conglomeration of au- 
tonomous systems (AS), each of which is 
under the control of a single administrative 
unit and whose structure is transparent 
from the outside. As an example, a large 
corporation’s network may be organized as 
an AS. Figure 13(b) shows a typical rout- 
ing structure between two ASs within the 
Internet. 

Internet Activities Board Internet 

Architecture Board. 

Internet address In IPv4, a 32-bit ad- 
dress assigned to hosts using TCP/IP. See 
DOTTED DECIMAL NOTATION. 

NOTE: IPv6 provides 128-hit addresses. Whereas 

ITvd which is currently the most used protocol uses 
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FIGURE l3. Concept ual idea of the Internet. 


32 bit addresses. IPv6 provides mechanisms for 
smooth transition for hosts and routers to dynamically 
tunnel IPv6 packets over IPv4 routing infrastructure. 

Internet Architecture Board The tech- 
nical body that oversees the development 
of the Internet suite of protocols and man- 
agement. It has two subcommittees: IETF 
(Internet Engineering Task Force) and IRTF 
(Internet Research Task Force). Internet Ar- 
chitecture Board’s (IAB) charter is given in 
RFC 2850. More information is available 
at http://www.iab.org. 

NOTE: The IAB was set tip in 1983 when the 
Internet was still in its infancy as a US. government 
research project; at that time it was called the Internet 


Activities Board. Earlier history of Internet Activities 
Board is not traceable from public records. A snapshot 
of the IAB in 1990, and a short history , are given 
in RFC 1 160. 

Internet Assigned Number Authority 

A group organized through the Internet 
Society for maintaining assigned numbers 
relating to the Internet Protocol suite. 
Details of Internet Assigned Number Au- 
thority (IANA) are available at http:/ / 
www.iana.org. 

Internet Control Message Protocol 

The protocol used to handle errors and 
control messages at the IP layer. INTERNET 
Control Message Protocol (ICMP) is used 

from GATEWAYS to host, and between hosts 
to report errors and make routing sugges- 
tions. ICMP is actually part of the IP proto- 
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col. Details of the protocol are given in 
RFC 792. 

NOTE: RFC 1883 gives the specifications of Inter~ 
net Control Message Protocol (ICMPv6) for the In~ 
temet Protocol Version 6 (IPv6). 

internet datagram The unit of data ex- 
change between a pair of internet modules. 

Internet Engineering Steering Group 

The executive committee of the INTERNET 
Engineering Task Force (IETF). A steering 
committee that oversees the activities of 
the IETF. More information about INTERNET 
Engineering Steering Group (IESG) is avail- 
able at http:/ /www.ietf.org/iesg.html 

Internet Engineering Task Force A 

standards body whose focus is protocols 
for use in the Internet. Its publications are 
called Internet RFCs (REQUEST For Com- 
ments). More information about INTERNET 
Engineering Task Force (IETF) is available 
at http:/ / www.ietf.org 

internet fragment A portion of the 
data exchanged between a pair of Internet 
nodes. 

This ensures that IP DATAGRAMS can fit 
inside one packet on any network topology 
and that packets are fragmented when they 
are too big to go over a given network. 
Ethernet can accept packets up to 1,500 
bytes long, while FDDI can accept those 
up to 4,500 bytes long. 

In Figure 14, HI sends a 1,400-byte 
packet to H2. If we assume that the maxi- 
mum transmission of the physical network 
of HI, which may be a point-to-point net- 
work, is 512 bytes (where R1 is located), 
the packet is fragmented into three packets 
of sizes 512, 512, and 376. Routers R2 
and R3 (for example, they may be a part of 
an Ethernet or an FDDI physical network) 
do not fragment the packets any further. 
The three packets are assembled at H2. 


Internet Fraud Complaint Center The 

Internet Fraud Complaint Center (IFCC) (of 
U.S.) is a joint operation of the U.S. Fed- 
eral Bureau of Investigation (FBI) and the 
U.S. National White Collar Crime Center 
(NW3C) with a purpose to address fraud- 
ulent activities over the Internet. IFCC of- 
fers a central repository for complaints re- 
lated to Internet fraud; collects and 
maintains fraud complaint information to 
help in preventive and investigative efforts; 
provides mechanisms for reporting fraud 
on the Internet; and directs Internet fraud 
complaints to the appropriate law enforce- 
ment and regulatory agencies. For law en- 
forcement and regulatory agencies it pro- 
vides services and statistical data of current 
fraud trends and other information. This 
Web site (see below) contains recent 
trends and analytical reports and can be 
used to file a fraud complaint. For more 
details see http:/ /www.ifccfbi.gov. 

internet key exchange A part of the 
IPSEC virtual private networking protocol 
for CRYPTOGRAPHIC key exchange and man- 
agement, described in RFC 2409. 

Internet Network Information Center 

Authority that administers and assigns In- 
ternet domains and network addresses. 
More information about INTERNET NETWORK 

Information Center (InterNIC) is available 

at http:/ /www.internic.net/index.html. 

Internet Policy Registration Authority 

Internet authority that registers policies for 
CAs. Internet Policy Registration Authority 
(IPRA) certifies only PCAs and not CAs or 
users. PCAs have their own policy of issuing 
certificates. See also POLICY CREATION Authority 
and CERTIFICATION AUTHORITY HIERARCHY. 

internetwork private line interface 

Interface that provides secure connections 
between a host and a predetermined set of 
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FIGURE l4. Illustration of Internet fragmentation. 


corresponding hosts through a network 
CRYPTOGRAPHIC unit. 

Internet Protocol Standard protocol for 
the transmission of data in packet-switched 
communications networks and their inter- 
connected systems. INTERNET PROTOCOL is 

given in RFC 791. 

Internet Protocol Next Generation 

Internet Protocol Next Generation (IPng) 
is a new version of the Internet Protocol 
designed by IETF as a successor to IPv4. It 
is assigned IP version number 6 and is 
called IPv6. Implementations of IPv6 are 
available for many operating systems. The 
overall goal of IPv6 is to create an archi- 
tectural framework that enables the Inter- 
net to grow to a system with millions of 
interconnections to IPv6 from IPv4 and 
minimal disruption to existing systems. 

In addition to various new features, 

IPv6 increases the size of Internet ad- 
dresses from 32 bits to 128 bits, thus in- 
creasing the number of available network 
and host IP addresses. 

IPng-compliant systems must imple- 


ment IPsec. Details of IPv6 are available at 
http:/ / www.ipv6.org. 

internet protocol security A virtual pri- 
vate NETWORKING (VPN) protocol standard 
that can be used to provide NONREPUDIA- 
TION, data integrity and privacy, AUTHENTI- 
CATION, and replay protection over public 
IP networks such as the Internet. 

NOTE: The security architecture for LP is defined 
in LPsec , the security architecture for IP. Details of 
IPsec are given in RFC 2401. IPsec provides two 
security mechanisms (1) The IP AUTHENTICA- 
TION HEADER (ATT) described in RFC 2402 
and (2) The IP encapsulating security payload 
( ESP) described in RFC 2406. 

Internet Relay Chat An Internet service 
that allows real-time text-based communi- 
cation with other users in Internet loca- 
tions called chat rooms. 

Internet Research Task Force One of 

the task forces ol the IAB, the group re- 
sponsible for the research and development 
of the Internet Protocol suite. More infor- 
mation is available at http:/ / www.irtf.org 

Internet Security Association and Key 
Management Protocol Provides a ge- 
neric framework for key management. 
Internet Security Association and Key 
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Internet worm 


Management Protocol (ISAKMP) is exten- 
sible in that it is not limited to specific 
CRYPTOGRAPHIC algorithms or protocols and 
hence offers more flexibility with regard to 
use than Photuris or SKIP protocols. De- 
tails of ISAKMP are given in RFC 2408. 

Internet worm A program written by 
Robert Morris Jr. that replicated itself 
from machine to machine on the Internet 
in 1988 and clogged the network. 

InterNIC Internet Network Infor- 

mation Center. InterNIC administers and 
assigns Internet domains and network 
addresses. 

intruder cracker. 

intrusion (1) An act in which an ADVER- 
SARY gains access to a system in violation 
of its security objectives. (2) Acts that 
COMPROMISE the integrity, CONFIDENTIALITY, 
or availability of networks and systems. 

intrusion detection The science or art 
dealing with the detection of intrusion into 
networks or computer systems, and of 
mechanisms that perform such services. 

Intrusion Detection in Our Time A sys- 
tem of intrusion detection that uses 
pattern-matching techniques. 

IO INFORMATION OPERATIONS. 

IP Internet Protocol. 

IP datagram The fundamental unit of 
information passed across the Internet and 
the unit of end-to-end transmission in IP 
protocol that contains the source and des- 
tination address, along with data and a 
number of fields that define such things as 
the length of the DATAGRAM, the header 
CHECKSUM, and a flag to say whether the 
DATAGRAM can be fragmented. 

IPng Internet Protocol Next 
Generation. 


IPRA Internet Policy Registration 
Authority. 

IPsec internet protocol security. 

IP splicing A method for attacking or in- 
tercepting an established TCP/IP connec- 
tion. Usually, this type of ATTACK occurs af- 
ter AUTHENTICATION of the users is complete 
and the attacker assumes the role of a le- 
gitimate user. 

IP spoofing One machine on the Inter- 
net masquerading as another machine by 
using the latter’s IP address. 

IPv6 Internet Protocol Next 

Generation. 

IRC Internet Relay Chat. 

iron box A setup to trap hackers and 
keep them on the system (or network) 
long enough to trace their origin. The 
setup usually provides bait files to keep 
the intruder’s interest. 

IRTF Internet Research Task Force. 

IS INFORMATION SYSTEM. 

ISAKMP Internet Security Associa- 
tion and Key Management Protocol. 

ISDN integrated services digital 
network. 

ISO International Organization for 

Standardization. 

ISO OSI The seven-layer OSI (OPEN SYS- 
TEMS Interconnect) model proposed by ISO 
has provided a conceptual framework for 
understanding networks. See Figure 15. 

NOTE: ISO 7498 describes the ISO OSI model. 
ISO 7 498 part 2 defines security architecture but is 
superseded by ISO/IIC 10748 and ITU-T 
X.803 “Upper Layers Security Model,” ISO/TEC 
13894 and ITU-T X.802 “Lower Layers Security 
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ISO-OSI 

Model 

TCP/IP Model 

Protocols Used 

Application 

Application 

Telnet, FTP, DNS, 
SMTP, TFTP, HTTP 

Presentation 


Session 

Transport 

Transmission 

TCP, UDP 

Network 

Internet 

IP 

Data link 

Host to 
Network 

Ethernet, X.25, SLIP, 
PPP, IEEE 802.3, 

IEEE 802.5 

Physical 



FIGURE l5. Comparison of the ISO model and the 
TCP/IP model. 


Model," and ISO/IEC 10181-1 and ITU-T 
X.810 Security Frameworks, Part 1: Overview 

ISS INFORMATION SYSTEM SECURITY. 

ISSM INFORMATION SYSTEM SECURITY 

MANAGER. 


ISSO INFORMATION SYSTEM SECURITY 

OFFICER. 

ITAR International Traffic in Arms 

Regulations. 

ITSEC Information Technology 

Security Evaluation Criteria. 

ITU International Telecommunica- 

tions Union. 

IV INITIALIZATION VECTOR. 
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Java sandbox A mechanism that con- 
fines the scope of Java APPLET actions ac- 
cording to rules defined in a security 
model. 

Java Virtual Machine Software that 
provides a virtual machine on which Java 
software can be executed. See Figure J 1 . 

JIVA Joint Intelligence Virtual 
Architecture. 

Joint Intelligence Virtual Architecture 

A system designed by the U.S. government 
with a purpose to provide modernization 
of intelligence analytical processes and 
methodologies. The goal of Joint INTELLI- 
GENCE Virtual Architecture (JIVA) is to pro- 
vide a single database of knowledge by 
combining inputs from various agencies to 
create an intelligence tool to create “virtual 
intelligence” by using full-motion video 



FIGURE J 1 . Conceptual Representation of the Java 
Virtual Machine (JVM). 


and 3-D representations. For details 
of JIVA see http://www.fas.org /trp/ 
program/ core/jiva.htm. 

JVM «~ 


Java Virtual Machine. 
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K 


kamikaze packet Chernobyl 

PACKET. 

KDC KEY DISTRIBUTION CENTER. 

KEK KEY ENCRYPTION KEY. 

Kerberize To enhance an application to 
use Kerberos for authentication and/ or 

ENCRYPTION. 


key backup 



KEY ESCROW. 


keyboard attack attack. 


key card A paper card consisting of a 
pattern of punched holes that establishes a 
key for a specific CRYPTONET at a specific 
time. 


Kerberos A DES-based authentication 
system developed at Massachusetts Insti- 
tute of Technology (U.S.) as part of Proj- 
ect Athena and subsequently incorporated 
into a growing collection of commercial 
products. Detailed specifications of KER- 
BEROS are given in Internet RFC 1510. See 
Figure Kl. 

key A quantity used in CRYPTOGRAPHY to 
ENCRYPT or DECRYPT information. This may 
be a set of symbols, letters, numbers, or 
characters that are used to encrypt or de- 
crypt a text or a message. 

key archive key escrow. 

key-auto-key A form of cryptographic 
LOGIC that uses a previous key to create a 
new key. 


key distribution center An online 
trusted intermediary that has a master key 
for all principals and that generates CON- 
VERSATION KEYS between principals when 
requested. 

Key distribution can be implemented in 
various ways. In the following illustration 
we use a scenario based on [GP79] and de- 
picted in Figure K 2. Suppose user A wants 
to start a communication session with user 
B. We assume that user A shares a secret 
key K a and user B shares a secret key K B 
with the KEY DISTRIBUTION CENTER (KDC). The 
following steps take place: 

(1) A sends a message Message_of_A_ 
to_KDC = (1 D(A), ID(B), Nl) to KDC 
that contains identification of A (for exam- 
ple, IP address), identification of B, and a 
NONCE Nj. 


key distribution center 


Kerberos 



FIGURE Kl . Kerberos authentication menchanism. 



FIGURE K2. Figure explaining key distribution 
center. 


(2) KDC responds with a message that 
is encrypted using the key of A. The mes- 
sage contains items for both A and B. For 
A, it has a session key K s and the original 
message, and for B it has a session key 
and identity of A. Both of these are en- 



crypted using K b . So, the message from 
KDC to A is 

Message_from_KDC_to_A = Encrypt_ 
usinp KA [(X a Message_of_A_to_KDC ’), 
Encrypt usinp KB(Ks } U)(A j j( 

(3) User A then forwards the item in- 
tended for B (Encrypt usinp KB[(K^ : ID(A)J\J 
to B. So, user B now decrypts the message 
using its own key K B and knows the ses- 
sion key K s . 

Now both user A and user B have a 
session key and can start communicating. 
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key updating 


To ensure against a replay attack and 
to AUTHENTICATE, the next two steps are 
performed. 

(4) Using the session key K s user B 
sends a nonce N 2 to A. 

(5) User A performs a function, for ex- 
ample, adding 1, and sends it to B. 

(6) Now users A and user B can start 
communicating. 

key encryption key Key for encryption 
or decryption of another key, which is used 
for secure transmission or storage. 

key escrow A system that provides 
backups of encryption keys so that data 
can be decrypted if the primary copy of 
the key used to encrypt the data is not 
available. KEY ESCROW can be used for 
schemes that give access (under court or- 
der) to law enforcement agencies and KEY 
RECOVERY for schemes that give access to 
owners who have lost their key. Other 
terms are KEY ARCHIVE, KEY BACKUP, and data 
recovery system. 

keying material A physical or magnetic 
key, code, or piece of AUTHENTICATION infor- 
mation. Also known as key material or 
keymat. 

key list A printed list, pad, or printed 
tape of a series of key settings for a spe- 
cific CRYPTONET. 

key management The supervision and 
control of the generation, storage, use, de- 


struction, distribution, and revocation of 
a key. 

key pair A public key and its corre- 
sponding private key for use in PUBLIC KEY 
CRYPTOGRAPHY. 

key production key A key that acti- 
vates a key-stream generator to produce 
other electronically generated keys. 

key stream A sequence of symbols pro- 
duced in a machine or auto-manual CRYPTO- 
SYSTEM that combine with PLAINTEXT to pro- 
duce CIPHERTEXT, control transmission 
security processes, or produce keys. 

keystroke monitoring Recording every 
keystroke of the user (and usually every 
character of response). A form of AUDIT 
TRAIL software or a specialized device usu- 
ally does this monitoring. 

keystroke system A system that com- 
pares a pattern of keystrokes with a stored 
pattern to determine whether there is a 
match. 

key recovery key escrow 

key tag Information for the identifica- 
tion of certain types of electronic keys. 

key tape A punched or magnetic tape 
containing a key. A printed key in tape 
form is referred to as a KEY LIST. 

key updating A cryptographic process 
for modifying a key; it cannot be reversed. 
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label ■*" SECURITY LABEL. 

labeled security protections Mecha- 
nisms of a TRUSTED COMPUTING BASE (TCB) 
in which access control decisions are made 
on the basis of SENSITIVITY LABELS and CLEAR- 
ANCES. 

laboratory attack An ATTACK by which 
information from data storage media is ob- 
tained by using advanced signal recovery 
equipment in a laboratory setting. 

Law Enforcement Access Field The 

field that must be transmitted by one CLIP- 
PER CHIP to the Clipper chip at the other end 
of the conversation. Without it, the receiv- 
ing CLIPPER will refuse to DECRYPT the con- 
versation. The Law Enforcement Access 
Field (LEAF) enables law enforcement to de- 
crypt the conversation, after a court order 
to obtain the sending CLIPPER'S unique key. 
The LEAF field was also used in capstone 
chips. 

LEAF Law Enforcement Access Field 

leapfrog attack Using one system to 
get a user ID and password to get to an- 
other system. This also includes the use of 


multiple TELNET sessions to log on to a sys- 
tem to avoid a trace. See Figure LI. 

least privilege A property of an IS by 
which users or subjects are given only the 
minimum access (or privileges) necessary to 
perform particular authorized tasks. This 
limits the potential for damage resulting 
from accidental, erroneous, or malicious 
unauthorized use of an IS. 

letter bomb Malicious software, usually 
a LOGIC BOMB, distributed via electronic 
mail. Typically such software is not exe- 
cuted until the mail message is read, or 
when an attachment is opened. 

level of protection The extent to which 
ISs and networks must be protected based 
on risk, threat, vulnerability, system inter- 
connectivity considerations, and INFORMA- 
TION ASSURANCE needs. Typically the levels 
of protection are 1. Basic: IS and net- 
works requiring the implementation of 
standard minimum-security COUNTERMEA- 
SURES. 2. Medium: IS and networks requir- 
ing the layering of additional safeguards 
above the standard minimum-security COUN- 
TERMEASURES. 3. High: IS and networks 


life-cycle assurance 



FIGURE Ll . Use of multiple telnet sessions for a 
leapfrog attack. 


requiring the most stringent protection and 
rigorous security COUNTERMEASURES. 

life-cycle assurance The assurance 
that a trusted system is designed, devel- 
oped, and maintained based on controlled 
standards. In the ORANGE Book, these AS- 
SURANCES include security testing, design 
specification and verification, CONFIGURA- 
TION MANAGEMENT, and trusted distribution. 

limited maintenance Maintenance con- 
sisting only of fault isolation, removal, and 
the replacement of plug-in assemblies in 
INFOSEC equipment. In LIMITED MAINTE- 
NANCE, soldering or unsoldering is usually 
prohibited. See also FULL MAINTENANCE. 

line conditioning The elimination of in- 
advertent signals or noise produced or 
transported on a telecommunications or in- 
formation system signal, power, control, 
indicator, or other external interface line. 

line conduction Inadvertent signals or 
noise produced or transported on a tele- 
communications or information system sig- 
nal, power, control, indicator, or other ex- 
ternal interface line. 


link encryption In a communications 
system, the encryption of information 
between NODES. Contrast with END-TO-END 
ENCRYPTION. 

list-oriented A type of computer protec- 
tion where every protected object has a list 
of all subjects with AUTHORIZATION to access 
it. See also TICKET-ORIENTED. 

LMD/KP Local Management 
Device/Key Processor. 

local address The address of a host 
within a network. The actual mapping of 
an Internet local address onto the host ad- 
dresses in a network is quite general, allow- 
ing for many-to-one mappings. 

local authority An organization that 
generates and signs user certificates. 

Local Management Device/Key 
Processor An EKMS platform that gener- 
ates a key for authorized users and pro- 
vides automated management of COMSEC 
MATERIAL. 

lock and key protection system 

Protection system in which a key or pass- 
word must be matched with a specific ac- 
cess requirement. 

logical completeness measure A way 

of determining how effectively and to 
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lew probability of intercept 


what extent a set of security and access 
control mechanisms meets security specifi- 
cations. 

logic bomb Resident computer program 
that causes an unauthorized act to occur 
when certain states of an IS are reached. 

login A method of being identified and 
AUTHENTICATED by a computer system. 


long title The descriptive title of a 
COMSEC item. 

low probability of detection The re- 
sult of efforts to hide or disguise inten- 
tional electromagnetic transmissions. 

low probability of intercept The result 
of efforts to prevent the interception of in- 
tentional electromagnetic transmissions. 


81 



This page intentionally left blank 





MAC MANDATORY ACCESS CONTROL; 

MESSAGE AUTHENTICATION CODE; MEDIA ACCESS 
CONTROL LAYER. 

magnetic remanence After a magnetic 
medium has been cleared, the magnetic 
representation of residual information left 
on the medium. See also CLEARING. 

mail bomb An ATTACK in which many 
messages are sent to a particular address in 
order to exceed the mail recipient’s mail 
limit, thereby causing the system to crash 
or malfunction. 

mail gateway A machine that connects 
two or more electronic mail systems and 
transfers messages between them. Some- 
times the mapping and translation can be 
quite complex, and generally it requires a 
store-and-forward scheme whereby the 
message is received from the system com- 
pletely before it is transmitted to the next 
system after suitable translation. 

maintenance hook Special instructions 
(TRAP doors) in software that are designed 
for easy maintenance and additional feature 
development, but which can be serious se- 


curity risks if they are not removed before 
live implementation. 

maintenance key A key intended for 
in-shop use. 

malicious applets Small application 
programs that are downloaded and exe- 
cuted automatically to perform an unau- 
thorized function on an IS. 

malicious code Software or firmware 
that has the ability to perform an unautho- 
rized function on an IS. This software may 
be intentionally left in a system for mali- 
cious piurposes. Examples include VIRUSES, 

Trojan horses, logic bombs, and trap 

DOORS. 

malicious host For some mobile agent 
applications, an agent may contain sensitive 
information. In which case, it may be nec- 
essary to protect the agent from its execu- 
tion environment. In these situations, the 
host computer is referred to as a MALICIOUS 
HOST [WJOO], 

malicious logic Hardware, software, or 
firmware that has the ability to perform an 
unauthorized function on an IS. 
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mandatory access control A method 
of restricting access to objects containing 
sensitive information. Also the formal AU- 
THORIZATION of subjects to access this sensi- 
tive information. See also DISCRETIONARY AC- 
CESS CONTROLS. 

mandatory modification An NSA 

(U.S.) required change to a COMSEC 
END-ITEM that must be completed and re- 
ported by a specific date. See also OPTIONAL 
MODIFICATION. 

manipulative communications 
deception The deceptive alteration or 
simulation of friendly telecommunications. 
See also COMMUNICATIONS DECEPTION and IMI- 
TATIVE COMMUNICATIONS DECEPTION. 

manual cryptosystem Cryptosystem in 
which no CRYPTO-EQUIPMENT or auto-manual 
devices are used to perform the CRYPTO- 
GRAPHIC processes. 

manual remote rekeying The electri- 
cal rekeying of distant CRYPTO-EQUIPMENT, 
requiring specific actions by the receiving 
terminal operator. 

masquerader An unauthorized user 
who exploits a legitimate users account by 
impersonating an authorized user with 
means such as guessing a password, inter- 
cepting communications, or using mali- 
cious code. 

masquerading Form of spoofing. 

master crypto-ignition key A key de- 
vice with electronic logic and circuits that 
enables the addition of more operational 
CIKs to a keyset (maximum of seven) any 
time after the completion of the fill proce- 
dure. The master C1K can be made only as 
the first CIK during the fill procedure, 

material symbol A communications cir- 
cuit identifier used for supplying more key 
cards. 


maximum transmission unit The larg- 
est possible unit of data that can be sent 
on a given PHYSICAL MEDIUM. For example, 
the MTU of the Ethernet is 1,500 bytes. 
See also FRAGMENTATION. 

MD2 Message digest algorithm docu- 
mented in RFC 1319. See also HASH and 

MESSAGE DIGEST. 

MD4 Message digest algorithm docu- 
mented in RFC 1320. See also HASH and 
MESSAGE DIGEST. 

MD5 Message digest algorithm docu- 
mented in RFC 1321. See also HASH and 
MESSAGE DIGEST. 

media access control layer A sublayer 
of the OSI data link control layer, defined 
in IEEE 802. 

mediation The interposition of an AC- 
CESS CONTROL MECHANISM between a subject 
and an object. An arbiter positioned in the 
middle determines whether or not to allow 
a subject to perform a given operation on a 
specified object. 

memory scavenging The collection of 
residual information from data storage. 

Menezes-Qu-Vanstone key agree- 
ment scheme The Menezes-Qu- 
Vanstone scheme (1995) is a variant of 
the Diffie— fdellman algorithm; here, in- 
stead of one public— private key pair, each 
party contributes two public— private key 
pairs and uses its own two key pairs, the 
other party’s two public keys, and some 
agreed-upon parameters to decide on a 
shared secret key. 

message The unit of transmission in a 
transport layer protocol. In particular, a 
TCP segment of a message. A message 
consists of a transport protocol header fol- 
lowed by the application protocol data. To 
be transmitted end-to-end through the In- 
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FIGURE Ml . Message digest. 


ternet, a message must be encapsulated in- 
side a datagram. 

NOTE: The above is a specific defnition. The term 
MESSAGE is also used in SMTP and other messaging 
contexts. 

message authentication code Data 
that allows a receiver to verify an AUTHENTI- 
CATED message. The received message 
matches the sent message. 

message digest The result of applying 
an irreversible function that takes an 
arbitarary-sized input and produces a fixed- 
size output. Also called hash value. See 
Figure Ml. See also DIGEST. 

message externals Information exter- 
nal to the text of a message, such as the 
header or trailer. 

message hash digest. 

message indicator The sequence of 
bits transmitted over a communications 
system whose purpose is to synchronize 
CRYPTO-EQUIPMENT. Some OFF-LINE CRYPTOSYS- 
TEMS, such as the KL-51 and one-time pad 
systems, establish DECRYPTION starting points 
by using message indicators. 

Milnet The U.S. Department of Defense 
spinoff of the ARPAnet. 

MIME Multipurpose Internet Mail 
Extensions. 

mimicking Form of spoofing, also 
synonymous with IMPERSONATION or 
MASQUERADING. 


MLI MULTILEVEL INTEGRITY. 

MLS MULTILEVEL SECURITY. 

MNCRS Mobile Network Computer 
Reference Specifications. 

mobile code Program that can execute 
on remote locations without any modifica- 
tion in the code. A MOBILE CODE may travel 
and execute from one machine to anther 
on a network during its lifetime. Some sys- 
tems that create and execute MOBILE CODE 
are ActiveX, Java, JavaScript, VBScript, 
Microsoft Word macros, and PostScript. 
Mobile code can run on multiple platforms 
such as UNIX and Microsoft Windows. 

The mobile code interpreter (or the virtual 
machine) is now a part of Web browsers. 
Because of security concerns, many forms 
of mobile code platforms run an untrusted 
code in a secure fashion. See also JAVA SAND- 
BOX and Java Virtual Machine. 

Mobile Network Computer Reference 
Specifications These specifications ex- 
tend the concept a NETWORK COMPUTER to de- 
fine a mobile network computer (MNC). 

mobile node A NODE that changes its 
point of attachment to the Internet as part 
of its normal use. 

In mobile IP, a ROUTER named as a 
home agent is located on the home net- 
work of the mobile host (node). The mo- 
bile host has a permanent IP address, with 
the same network address as the network 
address of the home network. Other hosts 
on the Internet use this permanent address. 
A foreign agent is located on the network 
to which the mobile host attaches. 

Both the home and foreign agent ad- 
vertise their presence on the networks to 
which they are attached. The mobile host 
registers itself with the foreign agent of 
the network to which it attaches. This 
foreign agent in turn contacts the home 
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mockingbird 



FIGURE m 2. Mobile node. 


agent of the mobile host and provides the 
home agent a care-of address. Now the 
hosts on the Internet can contact the mo- 
bile host through its home agent (which 
has the same network number) and has a 
care-of address. When the mobile host at- 
taches itself to a new network, the whole 
process is repeated. Thus, for long-lived 
applications, the mobility of the host has 
no effect. Figure M2 shows this scenario, 
with one sending host, and the mobile 
host goes first from its home network to a 
new network (identified as step (1)). It 
then moves to a new network, and the 
whole process is repeated (identified as 
step (2)). 

mockingbird A program that mimics 
the behavior of legitimate user(s) or a sys- 
tem but can perform malicious activities at 
the instigation of a user or a process. 

model A representation of a policy or a 
system design that can be used for analysis 


or other reasoning about the policy or the 
system. 

modem Short for modulator/ 
demodulator. It converts digital signals 
from a computer to an analog form to 
transmit over a communication medium 
that may connect to a network or the In- 
ternet (usually a phone line; see NOTE be- 
low) and converts an analog signal that has 
come over a communication medium to 
digital form so that it can be processed by 
a computer. See Figure M3. 

NOTE: In addition to modems that connect a com- 
puter to a phone network there are other types oj mo- 
dems such as cable TV modems and Jiber modems. 

mode of operation (1) The conditions 
under which an IS operates based on the 
sensitivity of information processed and 
the CLEARANCE levels, formal access approv- 
als, and the need-to-know of its users. 
There are four authorized modes of opera- 
tion for processing or transmitting infor- 
mation: dedicated mode, system-high 
mode, compartmented/partitioned mode, 
and multilevel mode. (2) There are also 
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Network A 


FIGURE M4. Multicast. 


modes of operation for encryption: ECB, 
CBC, CFB, and OFB. 

monitoring The recording of relevant 
information about each operation per- 
formed on an object by a subject. It is re- 
tained in an AUDIT TRAIL for further analysis. 

MQV ■*" Menezes-Q u-V anstone key 

AGREEMENT SCHEME. 

MTU MAXIMUM TRANSMISSION UNIT. 

multicast A special form of broadcast 
where copies of a packet are delivered to 


Network B 

only a subset of all possible destinations. It 
identifies a group of interfaces such that a 
packet sent to a multicast address is deliv- 
ered to all of the interfaces in the group. 

In Figure M4, host H2 on network A is 
multicasting to hosts HI and H3 on net- 
work B. See also BROADCAST. 

multihomed host A computer con- 
nected to more than one physical data 
link. The data links may or may not be 
attached to the same network. A host is 
said to be multihomed if it has multiple 
IP addresses. 

multihost-based auditing The auditing 
or detecting of intrusion that includes data 
from multiple hosts. 
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multilevel device A device that main- 
tains and separates data of different secu- 
rity levels. 

multilevel integrity An integrity policy 
whose use depends on the order of multi- 
level integrity labels. 

multilevel mode An INFOSEC mode 
of operation wherein all the following 
statements are true about the users who 
have direct or indirect access to the system, 
its peripherals, remote terminals, or remote 
hosts: (a) Not all users have a valid secu- 
rity CLEARANCE for all the information pro- 
cessed in the IS; (b) all users have the 
proper security CLEARANCE and appropriate 
formal access approval for that information 


to which they have access; and (c) all users 
are on a need-to-know basis for the infor- 
mation to which they have access. 

multilevel security Information is CLAS- 
SIFIED at different levels of security. Infor- 
mation access is permitted according to 
ACCESS CONTROL policies. 

Multipurpose Internet Mail Extensions 

A set of specifications to link and transfer 
nontext files with Internet e-mail and other 
IP applications including Usenet news. 

mutual suspicion A condition where 
two ISs must rely upon each other to per- 
form a service, but neither IS trusts the 
other to properly protect the data they are 
sharing. 
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Nak attack negative acknowledg- 
ment ATTACK. 

name resolution The process of map- 
ping a name to the corresponding address. 
See also DNS. 

National Computing Security Center 

Founded in 1981 as DoD’s Computer Se- 
curity Center, it is now a part of the U.S. 
National Security Agency (NSA). It was 

renamed NATIONAL COMPUTER SECURITY CEN- 
TER (NCSC) in 1985. NCSC evaluates 
computing equipment to ensure that estab- 
lishments processing CLASSIFIED or other 
sensitive material are using trusted com- 
puter systems and components. This 
agency developed the TRUSTED COMPUTER SYS- 
TEM Evaluation Criteria (TCSEC) and the 
Trusted Network Interpretation Environ- 
ment Guideline (TNIEG). 

National Institute for Standards and 
Technology The U.S. government orga- 
nization that develops standards for U.S. 
federal government use. More information 
about the NATIONAL INSTITUTE FOR STANDARDS 
and Technology (NIST) is available at 
http:/ / www.nist.gov. 


National Security Agency The U.S. 
government agency responsible for protect- 
ing U.S. communications and producing 
foreign intelligence information. Estab- 
lished by a presidential directive in 1952 as 
a separately organized agency within the 
Department of Defense. 

National Security Information Infor- 
mation that in accordance with Executive 
Order 12958 or any predecessor order 
requires protection against unauthorized 
disclosure. 

National Security System Any tele- 
communications or information system op- 
erated by the U.S. government that (1) in- 
volves intelligence activities; (2) involves 
CRYPTOLOGIC activities related to national se- 
curity; (3) involves command and control 
of military forces; (4) involves equipment 
that is an integral part of a weapon or 
weapons system; or (5) is critical to the di- 
rect fulfillment of military or intelligence 
missions and does not include a system 
that is to be used for routine administra- 
tive and business applications (including 
payroll, finance, logistics, and personnel 
management applications). (Title 40 
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NC 


U.S.C. Section 1452, Information Tech- 
nology Management Reform Act of 1996.) 

NC NETWORK COMPUTER. 

NCRP NETWORK COMPUTER REFERENCE 

SPECIFICATION. 

NCSC National Computing Security 

Center. 

need-to-know The need to access, 
know of, or possess specific information 
essential to the completion of official du- 
ties. A person or an object is provided as 
much information as is essential to per- 
form a given task precisely. 

negative acknowledgment attack A 

type of ATTACK that exploits the vulnerabil- 
ity of those operating systems that do not 
handle asynchronous interrupts well and 
leave the system unprotected during such a 
time. 

NetBIOS Network Basic Input Out- 
put System. 

netiquette A combination of the words 
net and etiquette. A general code of con- 
duct for sending and receiving e-mail and 
for general use of the Internet. 

netmask Also known as SUBNET MASK, 
ADDRESS MASK. See also ADDRESS MASK. 

network A collection of two or more 
interconnected computers. IS combined 
with a group of interconnected network 
nodes. See Figure Nl. 

Typically, a network consists of hosts 
that are interconnected via a communica- 
tion subnet. Hosts are the primary com- 
puters connected to the network; they con- 
tribute to the network load and may 
perform functions not directly related to 
networking, such as running users’ pro- 
grams. Typically, hosts are identified at the 
highest level of the protocol hierarchy by a 
human user. The communications subnet 


consists of nodes interconnected via chan- 
nels; the nodes implement the functionality 
of the subnet by interfacing the hosts to 
the network and providing a means of 
passing messages between them. 

Network Basic Input Output System 

The standard interface to networks on 
IBM PC and compatible systems. 

network computer A lightweight, ubiq- 
uitous, extensible, secure, and easy to ad- 
minister system that ensures universality by 
using technologies like HTTP, HTM1, and 
Java. 

network computer reference 
specification Specifications that address 
requirements of new mobile computing 
devices. 

NOTE: /] / the time of writing this dictionary these 
specifications are still being worked on by a consor~ 
tium of leading industry members in computing. 

Network File System A distributed file 
system developed by Sun Microsystems 
that allows a set of computers to coopera- 
tively access each other’s files in a transpar- 
ent manner. 

network front end A device that 
enables a computer system to attach to a 
network. 

network information center A net- 
work INFORMATION CENTER (NIC) provides 
network information and support to end 
users and administrators. Originally, there 
was only one NIC, located at SRI Inter- 
national (U.S.) and tasked to serve the 
ARPANET community. Many regional and 
midlevel networks have established such 
centers to serve the local networking com- 
munity. There are NICs of local, regional, 
and national networks all over the world. 
Such centers provide user assistance, docu- 
ment service, training, and much more. 
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FIGURE N 1 . Network. Here ovals (A), (B), and (C) 
individually represent a network, and all three com- 
bined are also a network. 


NOTE: SRI International is located at Menlo Park , 
California (U.S. .). In May 1997, Stanford Research 
Institute officially hecame SRI International. Details 
about SRI International are available at bttp:// 
www.sri.com. 

network layer The OSI layer that is 
responsible for routing, switching, and 
subnetwork access across the entire OSI 
environment. 

network level firewall In this type of 
FIREWALL, protection is provided by examin- 
ing packets at the INTERNET PROTOCOL layer. 


network reference monitor A method 
of ACCESS CONTROL in which all access to 
objects within a network by subjects within 
the network is mediated by an abstract ma- 
chine. See also REFERENCE MONITOR. 

network security The protection of 
networks and their services that ensure that 
the network performs its critical functions 
correctly and without harmful side effects. 
It prohibits unauthorized modification, de- 
struction, or disclosure. 

network security architecture The 

subset of network architecture concerned 
with security-relevant issues. 

network security officer The individ- 
ual in charge of network security. See also 
INFORMATION SYSTEM SECURITY OFFICER. 
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network sponsor The individual or or- 
ganization that must state the network’s se- 
curity policy, design the necessary network 
security architecture, and ensure that the 
policy is enforced. The vendor is usually 
the sponsor for COMMERCIAL OFF-THE-SHELF 
systems (COTS). The project manager or 
system administrator is usually the sponsor 
for a fielded network system. 

network system A system based on 
a clear security architecture and design. It 
is made up of many interconnected com- 
ponents, 

network trusted computing base 
partition All of the protection mecha- 
nisms within a network, including hard- 
ware, firmware, and software, which com- 
bine to enforce a security policy. See 
TRUSTED COMPUTING BASE. 

network weaving Different unautho- 
rized communication networks linked to- 
gether to avoid detection and trace-back 
while accessing an IS. 

NFS Network File System. 

NIC (1) NETWORK INFORMATION CEN- 

TER. (2) Many people use NIC as an acro- 
nym for Network Interface Card. 

NIST National Institute for Stan- 
dards and Technology. 

node A computer in the Internet work 
environment on which internet protocol 
services are available. 

no-lone zone Area, room, or space that 
when staffed must contain two or more 
appropriately cleared individuals who must 
remain within each other’s sight. Set also 
TWO-PERSON INTEGRITY. 

nonce A quantity that any user of a pro- 
tocol uses only once, for example, a time- 
stamp, a sequence number, or a large ran- 


dom number. It is possible to introduce 
security weaknesses by using a nonce with 
the wrong properties. 

noncompromisability A system’s ability 
to withstand COMPROMISE. 

noncooperafive remote rekeying 

AUTOMATIC REMOTE REKEYING. 

nondiscretionary access controls 

Same as MANDATORY ACCESS CONTROLS. 

nondiscretionary security A set of 

U.S. DoD policies restricting access to an 
item of information based on a CLEARANCE 
level equal to or greater than the CLASSIFI- 
CATION associated with the item that 
should satisfy the access category’s set 
restrictions. 

nonrepudiation The property of a 
scheme achieved through CRYPTOGRAPHIC 
methods in which the recipient is able to 
prove to a third party that data has been 
sent by the sender or received by the re- 
ceiver. This property protects against the 
sender denying having sent the message 
and the receiver denying having received 
the message. The sender is provided with 
a proof of delivery and receiver is assured 
of sender’s identity. Nonrepudiation as a 
CRYPTOGRAPHIC property must not be con- 
fused with a legal guarantee. 

Nonrepudiation of origin provides 
proof of data (message) being sent by the 
sender; NONREPUDIATION of transmission 
provides proof of data (message) trans- 
mission, and NONREPUDIATION of delivery 
provides proof of receipt of the data 
(message) by the recipient. See ISO 
7498-2. 

nonsecret encryption Public key 

cryptography. 

nontamperability A system’s ability to 
withstand tampering. 
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NSA National Security Agency. 

NSI National Security Information. 

NTCB NETWORK TRUSTED COMPUTING 

BASE PARTITION. 


null Meaningless letter, letter symbol, or 
CODE GROUP within an encrypted message 
that delays or prevents its DECRYPTION or 
completes encrypted groups for transmis- 
sion or transmission security purposes. 
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OASIS ■*" Organization for the 
Advancement of Structured Information 
Standards. 

obfuscation code obfuscation. 

obfuscator A tool to do automatic CODE 
OBFUSCATION. 

object An active or passive entity that 
stores or receives information. Gaining ac- 
cess to an object means also gaining access 
to the information it contains. 

object reuse The reassignment and reuse 
of a storage medium that contains one or 
more objects after it has been made certain 
that the storage medium is free of residual 
data. 

OFB OUTPUT FEEDBACK MODE. 

off-line cryptosystem Cryptosystem in 
which ENCRYPTION and DECRYPTION are sepa- 
rate from the transmission and reception 
functions. 

one-part code A systematically ordered 
code of PLAINTEXT elements and their accom- 
panying CODE GROUPS in which one listing 
serves for both encoding and decoding. 
These codes are normally small and used 



to pass small volumes of low-sensitivity 
information. 

one-time cryptosystem A cryptosystem 
employing a key used only once. 

one-time pad An encryption method 
where a long string known only to the 
sender and the receiver is used as the key 
for ENCRYPTION and DECRYPTION. This ex- 
tremely simple encryption method is secure 
for keeping a message confidential if the 
string used is truly random, known only to 
the communicating parties, at least as long 
as the PLAINTEXT, and never reused. 

NOTE: Some have referred to a one-time pad as a 
key distribution mechanism rather than an encryption 
method , because many different algorithms can be used , 
as long as the conditions above are met. 

one-time tape Punched paper tape that 
provides key streams on a one-time basis in 
certain machine CRYPTOSYSTEMS. 

one-to-one mapping A function that 
assigns an output value to each input value 
in such a way that each input maps to ex- 
actly one output. 
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online cryptosystem A cryptosystem in 
which ENCRYPTION and DECRYPTION are per- 
formed in conjunction with the transmit- 
ting and receiving functions. 

online server Something that provides a 
service and is generally available on the 
network. 

open A system, specification, or an item 
developed with details available to the pub- 
lic. For example, an open Internet working 
protocol will allow independent Internet 
working implementations based on docu- 
mentation alone, and there are no patent, 
copyright, or trade secret impediments to 
its deployment. Examples of open systems 
include OSI seven-layer architecture for in- 
terconnection of computer systems. 

open security environment An envi- 
ronment that does not provide adequate 
protection against the loss of CONFIDENTIAL- 
ITY, INTEGRITY, or AVAILABILITY. 

Open Shortest Path First A “protocol 
standard” IGP for the Internet. See also IGP. 

Open Software Foundation An organi- 
zation founded as an industry consortium 
to develop and license open software. It is 
best known for OSF / 1 , a UNIX variant, 
and DCE, a family of protocols centered 
on a secure RPC and distributed file 
system. 

open storage The storage of classified 
INFORMATION in a container that is not ap- 
proved by the General Services Administra- 
tion, in an unoccupied accredited facility. 

Open System Interconnect The name 
of computer networking standards ap- 
proved by ISO. See also ISO OSI. 

operating system A group of programs 
that directly control the hardware of a 
computer and on which all of the com- 
puter’s other running programs are depen- 
dent. 


operational code A code mainly con- 
sisting of words and phrases appropriate 
for general communications use. 

operational data security The protec- 
tion of data from either unintentional, un- 
authorized, or intentional modification, 
destruction, or disclosure during input, 
processing, storage, transmission, or output 
operations. 

operational key A key used for over- 
the-air protection of operational informa- 
tion or for the production or secure elec- 
trical transmission of key streams. 

operational waiver The authority for 
the continued use of unchanged COMSEC 
END-ITEMS until a required change is com- 
pleted. 

operations security The process of 
controlling and protecting UNCLASSIFIED ge- 
neric activities to deny unauthorized per- 
sons information about capabilities and/ or 
intentions, 

OPSEC OPERATIONS SECURITY. 

optional modification An NSA (U.S.) 
approved change not necessary for universal 
implementation by all holders of a COM- 
SEC END-ITEM. This class of modification re- 
quires all of the engineering/ doctrinal con- 
trol of required change but is usually 
separate from security, safety, TEMPEST, or 
reliability. 

ORA Organizational Registration 

Authority. 

Orange Book Trusted Computer 

System Evaluation Criteria (TCSEC). 

organizational maintenance Limited 
maintenance that a user organization com- 
pletes. 

Organizational Registration Authority 

Branch of the PKI that AUTHENTICATES users’ 
identities and organizational affiliations. 
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Organization for the Advancement of 
Structured Information Standards 

Organization for the Advancement of 
Structured Information Standards (OASIS) 
uses public standards such as XML and 
SGML to develop industry specifications 
that are interoperable, OASIS is a non- 
profit, international consortium and its 
members include organizations and indi- 
viduals who use these standards. For more 
details, see the information at http:/ /www. 
oasis-open.org. 

OSF Open Software Foundation. 

OSI Open System Interconnect. 

OSPF •v' Open Shortest Path First. 

OTAR ■*' OVER-THE AIR REKEYING. 

out of band Mechanism different from 
the regular transmission of data. An out- 
of-band mechanism for key distribution 
would be something other than sending 
messages across the network, for example, 
by having people talk on the phone to each 
other or to give each other pieces of paper 
or floppies that contain keys. 

output feedback mode A method of 
turning a secret key block CIPHER into a 
stream CIPHER. OUTPUT FEEDBACK (OFB) effec- 
tively generates a pseudo-random one-time 


pad by iteratively encrypting the previous 
block, staring with an IV. 

overrun In the security community, the 
term OVERRUN means that security is COM- 
PROMISED. A common goal is to minimize 
the damage done if a single node in a sys- 
tem is overrun and secrets are revealed. 

overt channel Communications path de- 
signed for the authorized transfer of data 
in a computer system or network. See also 
COVERT CHANNEL. 

over-the-air key distribution The dis- 
tribution of electronic keys by way of OVER- 
THE-AIR REKEYING, OVER-THE-AIR KEY TRANSFER, or 
COOPERATIVE KEY GENERATION. 

over-the-air key transfer The elec- 
tronic distribution of keys without altering 
the traffic encryption key used on the se- 
cured communications path over which the 
transfer is completed. 

over-the-air rekeying The alteration of 
a traffic encryption key or a transmission 
security key in remote CRYPTO-EQUIPMENT by 
sending the new key directly to the remote 
CRYPTO-EQUIPMENT over the secured commu- 
nications path. 

overwrite procedure Writing patterns 
of data over data stored on a magnetic 
medium. 
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P2P PEER-TO-PEER. 

P3P Platform for Privacy Prefer- 

ences Projects. 

PAA Policy Approving Authority. 

packet A packet is the unit of data 

passed across the interface between the In- 
ternet layer and the link layer. It includes 
an IP header and data. A packet may be a 
complete IP datagram or a fragment of an 
IP datagram. 

packet filter A type of FIREWALL in which 
each packet is examined based on local se- 
curity policy and is accepted or rejected. 
See Figure PI. 

packet filtering A technique generally 
incorporated into ROUTERS to control and 
divert the flow of PACKETS based on prede- 
termined characteristics such as origin or 
destination of packets, or by the type of 
service being offered by a network. This 
technique may limit protocol-specific pack- 
ets to one segment of the network. 

packet sniffer A program or a process 
that captures and displays the contents of 
IP packets on a network. 



Packet 

Filter 


FIGURE Pi . Packet filter. 


pad Additional bits added to a message 
to make it a desired length, for instance, an 
integral number of bytes. This meaning of 
pad is not related to the word pad as in 
the phrase “one-time pad.” 

parity Bit(s) that can identify any altera- 
tion of a block of data. 

partitioned security mode An IS secu- 
rity mode of operation in which all person- 
nel have the CLEARANCE for all information 
handled by an IS, but not all personnel have 
formal access approval and NEED-TO-KNOW. 

passive Does not require action on the 
part of a user. 

passive attack This type of ATTACK does 
not result in any system state change or a 


passive threat 


change in data; it only monitors or records 
system state or data. 

passive threat A threat in which infor- 
mation is intercepted but not altered. Pas- 
sive threats can be dangerous because the 
information may be secret. Contrast with 
ACTIVE THREAT. 

passphrase Sequence of characters that 
is too long to be a password and is thus 
turned into a shorter virtual password by 
the password system, 

passwd Password checker that replaces 
/bin/ passwd on a UNIX system, offers 
enhanced logging, and keeps users from 
selecting passwords that can be easily 
guessed. 

password A supposedly secret string 
used to prove one’s identity, 

password sniffing Eavesdropping to 
capture passwords, which can then be used 
to masquerade as a legitimate user. 

path The sequence of gateways that at a 
given moment all the IP datagrams going 
from a particular source host to a particu- 
lar destination host will traverse. A path is 
unidirectional; it is not unusual to have 
different paths in the two directions be- 
tween a given host pair. 

PCA Policy Creation Authority. 

PCT Private Communication 

Technology. 

PDS protected distribution system. 

PDU protocol data unit. 

peer entity authentication Corroborat- 
ing the identity of the entity one is con- 
nected to. 

peer-to-peer A network with typically 
geographically distributed nodes, temporar- 
ily built on the Internet through the IP ad- 


dresses of the connected computers. Users 
use the same program on each machine to 
connect to each other’s machines and share 
each other’s resources and files. A typical 
application program with these features is 
Napster, which allows people to share mu- 
sic, usually via MP3 files through P2P net- 
works over the Internet. 

PEM Privacy Enhanced Mail. 

penetration The deceptive bypassing of 
a system’s security mechanisms. 

penetration testing Security testing in 
which authorized evaluators who are famil- 
iar with a system’s design and implementa- 
tion try to bypass its security features. 

per-call key Unique traffic encryption 
key generated automatically by certain se- 
cure telecommunications systems to access 
single voice or data transmissions. See also 
COOPERATIVE KEY GENERATION. 

perimeter-based security Protecting a 
network by providing security at all entry 
and exit points to the network. 

periods processing Processing in which 
different levels of CLASSIFIED and UNCLASSI- 
FIED information cannot be processed at the 
same time. All information from one pro- 
cessing period must be cleared before an- 
other processing period begins. 

permission One type of subject— object 
interaction. Also referred to as consent, 
typically consent for a particular user to 
access a particular object in some well- 
defined way. 

permutation A method of encryption 
where parts of the message are rearranged. 
Encryption by permutation is not very se- 
cure by itself, but it can be used in combi- 
nation with substitution to build powerful 
ciphers like DES. 
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FIGURE P2. Permuter. 


permuter Crypto-equipment device that 
changes the order in which the contents 
of a shift register are used in various 
nonlinear combining circuits. Figure P2 
shows a permutation of 10110111 to 
01011111. 

personal identification number Short 
sequence of digits used as a pass phrase, 

pest program A program with harmful 
and generally unexpected side effects. Ex- 
amples are Trojan horses, logic bombs, vi- 
ruses, and malicious worms. 

PGP Pretty Good Privacy. 

phage A program that maliciously modi- 
fies another program or data by propagat- 
ing a virus or a Trojan horse. 

PHF A CGI script that came as a part of 
earlier versions of Apache Web server and 
NCSA HTTPD. The original version of 
PHF accepted newline characters (%0a) and 


allowed execution of subsequent com- 
mands with privileges of the user running 
the Web server. 

Lack of proper parsing and validation 
of input data could trick this program into 
executing arbitrary code. For example, in 
UNIX, including meta characters, e.g., 
\/< > ! etc. in the input could result 
in escaping out to a shell and allowing exe- 
cution of arbitrary code. 

PHF attacks were common in 1996 
and 1997. 

phf vulnerability Named after an exam- 
ple cgi-bin script often distributed with ear- 
lier versions of several Web servers and 
commonly used to display the / etc/ passwd 
file. This vulnerability lets an intruder exe- 
cute arbitrary commands with the privileges 
of the Web server. 

photuris A key exchange protocol that 
uses long-term keys to AUTHENTICATE session 
keys. 

phreaker A person who manipulates a 
system to make telephone calls at others’ 
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expense without their knowledge or con- 
sent, 

physical layer The OSI layer that pro- 
vides the means to activate and use physi- 
cal connection for bit transmission. In 
plain terms, the physical layer provides the 
procedures for transferring a single bit 
across a physical medium. 

physical medium Any means in the 
physical world for transferring signals be- 
tween OSI systems. Considered to be out- 
side the OSI Reference Model, and there- 
fore sometimes referred to as “Layer 0,” 
The physical connector to the medium 
can be considered as defining the physical 
layer, i.e., the bottom of the OSI Refer- 
ence Model. 

physical network interface A physical 
interface to a connected network having a 
link-layer address. Multiple physical net- 
works on a single host may share the same 
link-layer address, but the address must be 
unique for different hosts on the same 
physical network. 

physical security The protection of 
computer systems, related buildings, and 
equipment from intrusion and natural and 
environmental hazards. Also the ACCESS 
CONTROL of computer systems and facilities 
through the use of locks, keys, and admin- 
istrative measures. 

PICS Platform for Internet Control 
Selection. 

piggyback Using somebody else’s legiti- 
mate connection to obtain unauthorized 
connection to a system. 

PIN PERSONAL IDENTIFICATION NUMBER. 

ping Package Internet groper. A program 
used to test the reachability of destinations 
by sending them an ICMP echo request and 
waiting for a reply. The term is used as a 


verb: “ping host X to see if it is up!” and 
also as a noun: “I sent it a ping but it 
didn’t respond.” 

ping of death A large ICMP packet sent 
to overflow the remote host’s buffer, caus- 
ing the remote host to reboot or hang. 

PKCS Public-Key Cryptography 
Standard. 

PKI Public Key Infrastructure. 

PKZIP Software package for data com- 
pression and backup from PKware, Inc. 

plaintext Unencrypted information. 

Platform for Internet Control Selection 

These are specifications to mark the Inter- 
net content with labels (metadata) that de- 
fine and categorize the content. Filtering 
software can use these labels to block ac- 
cess to certain data. This also facilitates 
CODE SIGNING privacy and parents’ and 
teachers’ control over the display of and 
access to Internet content. 

Platform for Privacy Preferences 
Projects This is an emerging standard 
defined by W3C that covers Web sites’ 
privacy policies. These policies, which are 
also available in a machine-readable form 
(on the Web site), include how a Web site 
handles personal information of its users. 
P3P-enabled Web browsers can compare 
users’ privacy preferences with a Web site’s 
P3P, thereby giving choice and information 
to a user. P3P1.0 specifications are now 
available from the World Wide Web Con- 
sortium (W3C) web site at http:/ /www. 
w3c.org. 

plausible deniability A situation in 
which events are structured such that 
someone can claim not to have known or 
done something, and no proof exists to the 
contrary. The term is usually used by a 
person or persons who arrange the struc- 


102 



Pretty Good Privacy 


ture of events for this purpose. See also 
NONREPUDIATION. 

playback Unauthorized resending of a 
legitimate recorded message. 

Point-to-Point Protocol The successor 
to SLIP, Point-to-Point Protocol (PPP) pro- 
vides router-to-router and host-to-network 
connections over both synchronous and 
asynchronous circuits. See also SLIP. 

policy An expression of the intent of a 
system’s owner or operator within which 
the system should operate. For example, a 
security policy describes the owner’s intent 
for the AUTHENTICATION, ACCESS CONTROLS, 
etc., for a system. There are also specific 
types of policies for CONFIDENTIALITY, safety, 
INTEGRITY, etc. 

Policy Approving Authority The pri- 
mary level of the U.S. DoD PKI Certifica- 
tion Management Authority. It is responsi- 
ble for the approval of the security policy 
of each PCA. 

NOTE: Policy Approving Authority 
(PAA) and Policy Creation Authority 
(PCA) are PKI terms used within a restricted con~ 
text , e.g., some U.S. and Canadian government 
PKIs. 

Policy Creation Authority The second 
level of the US DoD PKI Certification 
Management Authority. It is responsible 
for the formulation of the security policy 
under which it and its subordinate CAs 
will issue public key certificates. Also 
known as a Policy Certification Authority. 
See note (Policy Approving Authority). 

port A logical transport protocol end- 
point on a host. A single host may trans- 
mit or receive information on a number 
of different ports. Different applications 
may be associated with different ports. 
Sometimes an application may use the 
same “well-known” port number. Other 


applications use dynamically assigned port 
numbers. 

port scan A procedure to probe target 
computers by sending data packets to ports 
to see the network services offered. 

positive control material A collective 
term that refers to a sealed AUTHENTICATOR 
system, permissive action link, coded 
switch system, positive enable system, or 
nuclear command and control documents, 
material, or devices. 

PostScript A write-only programming 
language created by Adobe Systems, Inc. to 
describe printed pages. 

PPP ■*- Point-to-Point Protocol. 

preauthentication A method requiring 
a user to prove knowledge of a password 
before access is given to sensitive informa- 
tion that is encrypted with that password. 
This makes it more difficult for an ADVER- 
SARY to use an off-line password guessing 
ATTACK. 

preproduction model A version of 
INFOSEC equipment that uses standard 
parts and whose form, design, and perfor- 
mance may not be completely evaluated. 
Also called BETA MODELS. 

presentation layer The OSI layer that 
determines how application information is 
represented while in transit between two 
systems. 

Pretty Good Privacy A strong encryp- 
tion system for e-mail and file security that 
uses a combination of public key and se- 
cret key encryption. Created by Philip 
Zimmerman [PRZ95], a computer scien- 
tist from Boulder, Colorado. The operation 
of Pretty Good Privacy (PGP) consists of 
five functions: digital signatures, message 
encryption, compression, e-mail compati- 
bility, and segmentation, PGP now uses 
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FIGURE P3. PGP. 


Diffie— Heilman and DSA as well as or in- 
stead of RSA. 

Figure P3 shows an example of how 
PGP works. Part (a) of the figure shows the 
process before the message is transmitted, 
and part (b) shows the process after the 
message is received. 

Part (a): In (1) a digital signature 
(MD5/RSA) using sender’s private key is 
appended to the file containing plaintext 
message “This is a message from Phoha.” 
In (2) this file is compressed; in (3) this 
compressed file is encrypted with one- 
time session key using IDEA; in (4) using 
receiver’s public key, an encrypted copy 
of session key is added; in (5) this file is 
converted to ASCII armor format. This 
converted file is then sent over the 
network. 

Part (b): In (6) the ASCII file is re- 
ceived; in (7) ASCII armor is removed; in 
(8) one-time IDEA session key is recovered 
using receiver’s private key; in (9) the file 
is decrypted using one-time IDEA session 


(b) 

key; in (10) this file is decompressed and 
has both the signature and plaintext mes- 
sage. In (11) signature is verified using 
sender’s RSA public key. 

principal A user or the collection of 
processes in a computer working on that 
user’s behalf. Similar to subject; PRINCIPAL is 
a generic term used by the security com- 
munity to include both people and com- 
puter systems. 

print suppression Hides characters to 
ensure PRIVACY. Typically used while a user 
types in a password, 

privacy Protection from the unautho- 
rized disclosure of data. Security purists 
use CONFIDENTIALITY for this and use privacy 
to refer to the protection of personal infor- 
mation; privacy legislation consists of laws 
requiring government and business to jus- 
tify which data they keep about people, 
and to tell people what information those 
organizations are storing about them. 

NOTE: The usage has not standardized ; sometimes , 
privacy refers to a lower grade of CONFIDENTIAL- 
ITY , used merely to protect personal information , 
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rather than national security CLASSIFIED INFOR- 
MATION. 

Privacy Enhanced Mail lETF’s specifica- 
tions for secure electronic mail. PRIVACY 
ENHANCED Mail (PEM) provides mecha- 
nisms to support encryption, AUTHENTICA- 
TION and integrity of e-mail messages in 
the Internet. The IETF specification for 
PEM cover (1) the format of messages that 
use PEM, (2) a hierarchy of certification 
authorities, (3) a set of CRYPTOGRAPHIC al- 
gorithms, (4) message formats for re- 
questing and revoking certificates. PEM 
specifies a tree structure hierarchy of CAs 
for key distribution and uses RSA public 
key technology for encryption and AU- 
THENTICATION. More details are available in 

RFC 1421. RFC 1422, RFC 1423, and 
RFC 1424. 

privacy system A commercial encryp- 
tion system that can protect against a ca- 
sual listener, but does not provide protec- 
tion from a technically competent 
cryptanalytic ATTACK. 

Private Communication Technology A 

protocol that provides session-level security 
and is very similar to the SECURE SOCKET 
Layer Protocol of Netscape. 

private key The quantity in PUBLIC KEY 
CRYPTOGRAPHY that must be kept secure. 

NOTE: A private key is generally associated with a 
user , and this user is responsible for maintaining its 
CONFIDENTIALITY. 

privileged access A specific user, pro- 
cess, or computer’s AUTHORIZATION to access 
a computer’s resource(s). 

privileged user A user of a computer 
who has been given more privileges than 
normal users, usually to perform system 
management functions. A privileged user 
may be authorized to bypass the normal 
access control mechanism. 


probe An attempt to obtain information 
about an IS or its users. 

process Generally, a sequential locus of 
control, as in the execution of a virtual 
processor. It may take place on different 
processors or on a single processor, but 
with only a single execution point at any 
one time. 

production model The final mechanical 
and electrical form of INFOSEC equipment. 

promiscuous mail server A server that 
sends e-mail over the Internet without con- 
firming information on either the sender or 
recipient. 

promiscuous mode Refers to a setting 
of an Ethernet interface that allows it to ac- 
cept all information regardless of whether it 
is addressed to its address. In contrast, in 
normal mode, such an interface accepts only 
information that is specifically addressed to 
that interface or that is broadcast. 

proof-carrying code Code that has 
built-in methods to statically check and en- 
sure that code conforms with security poli- 
cies. This is an active area of research and 
the term is generally used in the context of 
MOBILE CODE. 

proprietary information Material and 
information developed by a company per- 
taining to the company’s products, busi- 
ness, or activities. Examples are financial 
information; data or statements; trade se- 
crets, product research and development; 
existing and future product designs and 
performance specifications; marketing plans 
or techniques; schematics; client lists; com- 
puter programs; processes; and know-how 
that have been clearly identified and prop- 
erly marked by the company as proprietary 
information, trade secrets, or company 
confidential information. 
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protected communications Telecom- 
munications protected by TYPE 2 products 
or data encryption standard equipment. See 
also TYPE 2 product. 

protected distribution system A wire 
line or fiber-optic distribution system that 
transmits CLASSIFIED national security infor- 
mation that is unencrypted through an area 
of lesser CLASSIFICATION or control, 

protected subsystem A program that 
can run at a higher level of privilege than 
the user of the program is entitled to, be- 
cause it has very structured interfaces that 
will not allow for anything but security- 
safe operations. 

protection philosophy The overall de- 
sign of an IS that describes each of the IS’s 
protection mechanisms. A combination of 
formal and informal techniques that prove 
that the security mechanisms can suffi- 
ciently enforce the security policy. 

protection ring One of a hierarchy of an 
IS’s select modes that provides certain ac- 
cess rights to authorized user programs and 
processes for a given mode. 

protective packaging Packaging tech- 
niques for COMSEC MATERIAL that protect 
against penetration, show whether penetra- 
tion has occurred or was attempted, and 
prevent premature viewing or copying of 
KEYING MATERIAL. 

protective technologies Special tamper- 
evident features and materials for detecting 
tampering and preventing attempts to COM- 
PROMISE, modify, penetrate, extract, or sub- 
stitute information-processing equipment 
and keying material. 

protective technology/package 
incident Any penetration, such as a crack 
or cut, of INFOSEC protective technology 
or packaging. 


protocol A system of rules governing the 
syntax, transmission, and sequencing of 
different messages that allow systems to 
exchange information. 

protocol data unit This is OSI termi- 
nology for “packet.” A PROTOCOL DATA UNIT 
(PDU) is a data object exchanged by proto- 
col machines within a given layer. PDUs 
consist of both protocol control informa- 
tion (PCI) and user data. 

protocol layer Within an overall com- 
munications process, a set of component 
processes each of which provides specific 
functions and communicates with adjacent 
layers. 

protocol model A conceptual model 
that describes how to communicate within 
a network. 

prowler A program to periodically clean 
up system resources. It may erase core files 
and other temporary files that are left be- 
hind by users and take up space. 

proxy The mechanism whereby one sys- 
tem “fronts for” another system in re- 
sponding to protocol requests. PROXY sys- 
tems are used in network management to 
avoid having to implement full protocol 
stacks in simple devices such as modems. 

In Figure P4 the dotted line indicates a 
virtual connection between an external cli- 
ent and a server. The connection between 
the external client and the proxy is called 
the external connection, and the connec- 
tion between the proxy and the server is 
called an internal connection. 

Proxy servers also act as go-betweens 
for unknown protocols. For example, an 
FTP proxy server may accept requests from 
a Web browser that does not have FTP im- 
plemented and transfer FTP requests to an 
FTP server. 
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FIGURE P4. Proxy. 


proxy ARP A technique by which one 
machine, usually a ROUTER, answers ARP re- 
quests intended for another machine. By 
“faking” its identity, the ROUTER accepts re- 
sponsibility for routing PACKETS to the 
“real” destination. PROXY ARP allows a site 
to use a single IO address with two physi- 
cal networks. Subnetting would normally 
be a better solution. 

public cryptography Knowledge of 
CRYPTOGRAPHY within the public domain, in 
contrast to CRYPTOGRAPHY that is CLASSIFIED. 

public key The quantity in PUBLIC KEY 
CRYPTOGRAPHY that may be safely divulged. 

public key certificate A digitally signed 
message that binds an identifier (for exam- 


ple a person’s identity) to a public key or 
some other attribute. 

public key cryptography 

ASYMMETRIC CRYPTOGRAPHY. 

Public Key Cryptography Standard A 

series of documents produced and distrib- 
uted by RSA Data Security, Inc., propos- 
ing techniques for using public key CRYPTO- 
GRAPHIC algorithms in a safe and 
interoperable manner. PKCS provides stan- 
dards for RSA encryption, Diffie— Heilman 
key agreement, extended certificate syntax, 
CRYPTOGRAPHIC message syntax, private key 
information syntax, certification request 
syntax, selected attributes, CRYPTOGRAPHIC 
token interface, and personal information 
exchange syntax. 

PKCS is a collection of 12 documents, 
PKCS#1 through PKCS#12, and PKCS 
also provides two supplementary docu- 
ments: (1) An Overview of the PKCS 
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Standards and (2) A Layman’s Guide to a 
Subset of ASN.1 , BER, and DER. 

Public Key Infrastructure (1) A set of 

standards for user AUTHENTICATION and data 
transfer. It is emerging as a de facto stan- 
dard to integrate security for e-business 
digital content and processes as well as for 
files and documents. It is based on ASYM- 
METRIC CRYPTOGRAPHY and uses public and 
private digital keys and digital signatures 
for the secure transmission of data and 
user AUTHENTICATION. (2) The framework 
responsible for issuing, maintaining, and 
revoking PUBLIC KEY CERTIFICATES. (3) A set of 
policies, procedures, hardware, and soft- 
ware that enable various applications to 


make use of PUBLIC KEY CRYPTOGRAPHY for se- 
curing information. Typically, a PKI needs 
to include at least one CERTIFICATE AUTHORITY, 
a certificate practice statement, a directory, 
a means for storing private keys, policies 
on the use of keys (for signature and/ or 
encryption), policy on the AUTHENTICATION 
of subjects (prior to issuing a certificate), 
and a CERTIFICATE REVOCATION LIST. A repre- 
sentative usage of PKI in this context may 
be “we need to build a PKI.” 

purging (1) An erasure technique that 
makes it difficult for an ADVERSARY to re- 
cover stored information. (2) The use of a 
LABORATORY ATTACK to make it impossible to 
recover stored information. 
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QoS QUALITY OF SERVICE. 

quality of service A data prioritization 
at the network layer of the OSI model, 
bandwidth reservation, control of jitter, la- 
tency, error rates, or other attributes that 
results in guaranteed throughput rates. 

quadrant Technology that provides reli- 
able protection of CRYPTO-EQUIPMENT from 
tamper attacks, by ensuring that as soon as 
any tampering is detected, all sensitive data 
and logic are destroyed. 

quantum cryptography Originally 
started in the 1970s by Stephen Wiesner 
[SW83], it builds on the premise that any 
ATTACK on a quantum communication chan- 


nel causes an unavoidable disturbance. This 
premise is based on the principle that mea- 
suring a quantum system in general dis- 
turbs it and yields incomplete information 
about its state before the measurement 
(Heisenberg’s uncertainty principle). This 
principle is used to build a CRYPTOGRAPHIC 
system for the distribution of a secret ran- 
dom CRYPTOGRAPHIC key between two par- 
ties initially sharing no secret information. 
The system can be combined with classical 
CRYPTOGRAPHIC techniques such as the one- 
time-pad to allow the parties to communi- 
cate securely. An introduction and more 
details about QUANTUM CRYPTOGRAPHY are 

available in [PW89], [BBE92]. 
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Rainbow Series A set of publications 
produced by the NCSC containing inter- 
pretations of ORANGE Book requirements 
for trusted systems. Documents contained 
in Rainbow Series are available at http:/ / 
www.radium.ncsc.mil/ tpep/library/ 
rainbow/. 

randomizer Analog or digital producer 
of random, unbiased, and usually indepen- 
dent bits. Used for key generation, to pro- 
vide a starting state for a key generator, 
and many other functions. 

RARP Reverse Address Resolution 

Protocol. 

RAT remote access Trojan. 

RBAC Role-Based Access Control. 

RC2 A proprietary secret key encryption 
scheme marketed by RSA Security. It is a 
block encryption scheme with 64-bit 
blocks and a varying length key. 

RC4 A proprietary secret key encryption 
scheme marketed by RSA Security. It is a 
stream encryption algorithm that effectively 
produces an unbounded length pseudo- 
random stream from a varying length key. 



RCP A UNIX command for copying a 
file across a network. 

read A fundamental operation in an IS, 
the only result of which is information 
flow from an object to a subject. 

read access An authorization to read 
information in an IS. 

realm A Kerberos term for all of the 
principals served by a particular KDC. 

real-time reaction An immediate re- 
sponse to the detection and diagnosis of an 
attempted penetration, resulting in the pre- 
vention of unauthorized access. 

recovery procedures The procedures 
needed for the restoration of an IS's data 
files and computational capability after a 
system failure. 

Red Descriptive term for information 
systems and associated areas, circuits, 
components, and equipment that are pro- 
cessing (unencrypted) national security in- 
formation. 

Red/Black concept Electrical and elec- 
tronic circuits, components, equipment, 
and systems that handle national security 


1 1 1 


Red Book 


information (Red) in electrical form, and 
those that handle non-national-security in- 
formation (Black) in the same form. 

Red Book Trusted Network Interpre- 
tation Environmental Guideline (TNIEG). 

Red Queen principle A basic premise 
of information warfare, it states that a 
system must continue to evolve (be devel- 
oped) to maintain its competitive advan- 
tage relative to the evolution of its ene- 
mies. The term is due to L. van Valen 
(1973) and is drawn from Lewis Carroll’s 
Red Queen in THROUGH THE LOOKING 
Glass, who observed, “Now, here, you 
see, it takes all the running you can do, 
to keep in the same place.” 

Red signal Any electronic emission 
(e.g., PLAINTEXT, KEY, key stream, subkey 
stream, initial fill, or control signal) whose 
recovery would reveal national security 
information. 

red team information assurance 

RED TEAM; TIGER TEAM. 

reference monitor A system component 
responsible for the mediation of all access 
to objects by subjects. All data accesses are 
performed through the reference monitor, 
which cannot be bypassed. See Figure Rl. 

reference validation mechanism Part 
of a trusted computer system that controls 
access between subjects and objects and 
whose correct operation is crucial to the 
protection of the system’s data. 

reflection attack An ATTACK where mes- 
sages received from a source are replayed 
back to it. 

release prefix A prefix added to the 
short title of U.S.— produced keying mate- 
rial to show that it has foreign releasability. 
Material with the prefix “A” can be re- 
leased to specific allied nations, and mate- 


rial with the prefix “U.S.” is intended for 
U.S. use only. 

remanence (1) Residual information 
left on a storage medium after it has been 
cleared. (2) A physical property of materi- 
als relating to the amount of magnetism 
left in the material after a magnetizing field 
is removed. See also MAGNETIC REMANENCE 
and CLEARING. 

NOTE: The Rainbow Series has a hook on “Data 
Remanence , ” which defines remanence as “the residual 
physical representation of data which has in some way 
been erased v (http:/ / www.radium.ncsc.mil/ tpep/ 
library/ rainbow /NCSC-TG-025. 2.html). 

remote access Trojan A Trojan horse 
that remotely accesses other computer sys- 
tems over a network or over the Internet. 

Remote File System A distributed file 
system, similar to NFS, developed by 
AT&T and distributed with their UNIX 
System V operating system. See also NFS. 

remote procedure call A paradigm for 
distributed program execution. Software is 
executed on a client machine until the pro- 
gram makes a call to a procedure that is to 
be executed on a remote server. Parameters 
for that procedure are transmitted across 
the network to the server, which executes 
the procedure and returns the results to the 
client. The client is then able to continue 
its execution, 

remote rekeying A method of rekeying 
a distant piece of CRYPTO-EQUIPMENT. See also 
AUTOMATIC REMOTE REKEYING and MANUAL RE- 
MOTE REKEYING. 

repair action An NSA (U.S.) approved 
change to a COMSEC END-ITEM that does 
not affect the original characteristics of the 
end-item and is provided for optional ap- 
plication by holders. Repair actions are 
limited to minor electrical and/ or mechan- 
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ical improvements to enhance operation, 
maintenance, or reliability. They do not re- 
quire an identification label, marking, or 
control but must be fully documented by 
changes to the maintenance manual. 

repeater A device that propagates elec- 
trical signals from one cable to another 
without making routing decisions or pro- 
viding packet filtering. See Figure R2. In 
OSI terminology, a repeater is a physical 
layer intermediate system. See also BRIDGE and 
ROUTER. 

replay attacks Attacks that use previ- 
ously recorded transactions between two 
valid protocol entities to initiate a new 
transaction. 

replaying Storing and retransmitting 
messages. The word is usually used to im- 
ply that the entity doing the replay of mes- 


sages is mounting some sort of security 
ATTACK. 

repudiation Denial of a transmission or 
receipt of a message. 

Requests for Comments The document 
series, begun in 1969, that describes the 
Internet suite of protocols and related ex- 
periments. Not all Requests for Comments 
(RFC) describe Internet standards, but all 
Internet standards are written up as RFCs. 

NOTE: RFCs are available from 
http:// www. ief. org. 

reserve keying material A key kept in 
reserve to meet unforeseen needs. See also 
CONTINGENCY KEY. 

residual risk Risks remaining after the 
application of security measures. 

residue Data left in storage after the 
completion of information processing 
operations but before there has been any 
DEGAUSSING or OVERWRITING. 
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FIGURE R2. A repeater connected to a computer 
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resource encapsulation The reference 
monitor’s mediation of access to an IS re- 
source that is protected and that a subject 
cannot directly access. Satisfies the require- 
ment for accurate auditing or resource 
usage. 

retina system A biometric system in 
which a retina blood vessel pattern must 
be matched with a stored pattern to gain 
access. 

retrovirus A type of virus that maintains 
internal bookkeeping to stay dormant until 
the backup and other auxiliary storage are 
also infected, making recovery difficult. 

Reverse Address Resolution Protocol 

The Internet protocol that a diskless host 
uses to find its Internet address at startup. 
Reverse Address Resolution Protocol 
(RARP) maps a physical address to an In- 
ternet address. See also Address Resolution 
Protocol. 


revocation Taking back privileges, either 
from a person or an entity such as a pro- 
cess that is no longer trusted. 

RFC Requests for Comments. 

RFS Remote File System. 

Rijndael The Rijndael (pronounced 
“rhme-dahl”) algorithm is a secret key al- 
gorithm created by Belgian cryptographers 
Joan Daemon and Vincent Rijmen. It uses 
keys of size 128, 192, and 256 bits. This 
algorithm will serve as the ADVANCED EN- 
CRYPTION Standard (AES) for all U.S. federal 
agencies. 

NOTE: Details of the technical reference of Rijn~ 
DAEL are given in [JD001 and [JD01J. For many 
downloads and more details about RIJNDAEL , visit 
the web site http://www.esat.kuleuven.ac.be/ 

— rijmen/ rijndael. 

RIP Routing Information Protocol. 

RIPE-MD-160 A MESSAGE digest algo- 
rithm. This is a 160-bit CRYPTOGRAPHIC 
hash function, designed by Hans Dobber- 


RSA 


tin, Antoon Bosselaers, and Bart Preneel. 
This hash function is intended as a secure 
replacement for the 128-bit hash functions 
MD4, MD5, and RIPEMD. RIPE-MD-160 
is a strengthened version of RIPEMD and 
is tuned for 32 bit processors, RIPEMD 
was developed in the framework of the EU 
project RIPE (RACE Integrity Primitives 
Evaluation, 1988—1992). See also HASH, MES- 
SAGE DIGEST, MD4, and MD5. 

risk The probability that a particular se- 
curity system vulnerability will be ex- 
ploited. 

risk analysis A process of analyzing and 
examining the impact, severity, and the 
likelihood/ frequency of particular risks. 
Compare with RISK ASSESSMENT. Both RISK 
ANALYSIS and RISK ASSESSMENT are separate 
phases of a risk management process. 

risk assessment An analysis of threats 
to and vulnerabilities of an IS and the po- 
tential effect of the loss of information or 
capabilities of a system in order to identify 
appropriate and cost-effective COUNTERMEA- 
SURES. 

risk index The difference between the 
minimum level of CLEARANCE needed for the 
AUTHORIZATION of IS users and the maxi- 
mum sensitivity (e.g„ CLASSIFICATION and 
categories) of the system’s data. 

NOTE: This is a concept derived from the yellow 
book of the Rainbow Series , applicable to U.S. defense 
systems processing CLASSIFIED INFORMATION. 

risk management A process in which 
an information system’s security risks are 
minimized to a level proportional to the 
value of the assets protected. 

rlogin A UNIX command for logging 
into a machine across the network. A short 
form of “remote login.” 


Role-Based Access Control Access 
CONTROL model, where accesses to system 
resources are defined in terms of roles, 
privileges, sessions, and user-role, role- 
privileges assignments. Within a session a 
user activates certain roles and the corre- 
sponding privileges. 

rootkit Rootkits are software suites that 
substitute Trojans for commonly used op- 
erating system binaries, thereby allowing 
malicious BACK-DOOR entry to a system. A 
ROOTKIT typically has four types of tools: 
(1) Trojans, (2) BACK-DOORS, (3) network 
interface eavesdropping tools (sniffers), 
and (4) log cleaners that cover the tracks. 

Examples of UNIX rootkit components 
are altered versions of LOGIN, netstat, ps 
(Trojan), intetd (Back door), etc. In 
Windows NT, a ROOTKIT may patch the 
NT kernel to usurp system calls to hide a 
process, registry entry, or Trojan execut- 
able file, or redirect calls to Trojan func- 
tions. See also TROJAN HORSE. 

router A system responsible for making 
decisions about which of the several paths 
internetwork traffic may follow. A ROUTER 
may be implemented in hardware, software, 
or a combination of both. To do this, it 
uses a routing protocol to gain information 
about the network, and a set of algorithms 
to choose the best route based on several 
criteria known as “routing metrics.” See 
Figure R3. In OSI terminology, a router is 
a network layer intermediate system. See also 
GATEWAY, BRIDGE, and REPEATER. 

Routing Information Protocol An Inte- 
rior Gateway Protocol (IGP) supplied with 
Berkeley UNIX. 

RPC REMOTE PROCEDURE CALL. 

RSA A public key cryptographic algo- 
rithm named for its inventors R. Rivest, 
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A, Shamir, and L. Adleman. The algorithm 
can be used for encryption and digital sig- 
natures. The security of this algorithm re- 
lies on the difficulty of calculating the fac- 
tors of large numbers. The algorithm was 
patented in 1983, but the patent has now 
expired, and so the algorithm is freely 
available. 


RSADSI An abbreviation for RSA Data 
Security, Inc., the company that held the 
RSA patent. 

NOTE: (ij RSADSI no longer exists. It is now 
called RSA Security. (2j The patent for RSA has 
already expired , and the technology is available pub- 
licly. The company released the algorithm publicly a 
week or so before the patent expired. 

rsh The UNIX remote shell command 
that executes a secured command on a 
specified machine across a network. Short 
form of remote shell. 
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S2ML Security Services Markup 
Language. 

SA SECURITY ASSOCIATION; SYSTEM 

ADMINISTRATOR. 

safeguarding statement A statement 
affixed to a computer output or printout 
that states the highest CLASSIFICATION being 
processed at the time the product was pro- 
duced and requires control of the product, 
at that level, until the determination of the 
true CLASSIFICATION by an authorized person. 
Synonymous with BANNER. 

safeguards security safeguards. 

salt A user-specific value cryptographi- 
cally combined with that user’s password. 
Salt serves several purposes. It makes the 
hash of two users’ passwords different 
even if their passwords are the same. It 
also means that an intruder cannot pre- 
compute hashes of a few thousand 
guessed passwords and compare that list 
against a stolen database of hashed pass- 
words. The salt can be a random number 
that is stored, in the clear, along with the 
hash of the user’s password or it will con- 


sist of the user’s name or some other user- 
specific information. 

sample key A key used only for off- 
the-air demonstration. 

sandbox An area of a network or a 
computer system in which programs are al- 
lowed to run with limited privileges and 
have no access and rights to certain system 
resources or areas. For example, a Java APP- 
LET confined to a sandbox environment may 
not have access to the hard disk. (See JAVA 
SANDBOX). An isolated segment of a net- 
work used for testing is another example 
of a sandbox environment. 

sanitize The permanent removal of in- 
formation, including all CLASSIFIED labels, 
markings, and activity logs, from media. 

SATAN Security Administrator Tool 
for Analyzing Networks. 

scavenging Acquiring data from object 
residue. 

scratch pad store A short-term storage 
of keys to guard against tampering, disclo- 
sure, and unauthorized use in crypto- 
equipment. 
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script kiddies A slang term used for 
hackers who use tools written by others to 
attack systems because they themselves lack 
the technical knowledge and skills to write 
their own tools. 

SDMI Secure Digital Music Initiative. 

secrecy Protects information from 
people with unauthorized access. See also 
CONFIDENTIALITY. 

secret (1) (noun) A quantity known only 
to principals that can be used for AUTHENTI- 
CATION and encryption of information flow 
between them. (2) (adjective) A label ap- 
plied to CLASSIFIED INFORMATION whose unau- 
thorized disclosure may cause serious dam- 
age to individual, organizational, or 
national security. 

secret key The information that is used 
for both the ENCRYPTION of data and its 
subsequent DECRYPTION. Typically, a method 
needs to be used for sharing this secret key 
between the parties who encrypt and de- 
crypt the data. 

secret key cryptography Also known 
as SYMMETRIC CRYPTOGRAPHY. A scheme in 
which the same key is used for ENCRYPTION 
and DECRYPTION. See Figure SI. 

secure communications Telecommuni- 
cations secured by TYPE 1 (U.S.) products 
and/or PROTECTED DISTRIBUTION SYSTEMS. 


Secure Digital Music Initiative A con- 
sortium of companies and organizations 
with an aim to develop an open framework 
for storing, playing, and distributing digital 
music and to prevent the distribution of il- 
legal copies of music. At present there are 
more than 200 members in this consor- 
tium representing consumer electronics, In- 
ternet service providers, information tech- 
nology, telecommunications, security 
technology, and the music industry. It also 
provides specifications for portable devices. 
For more details see the information at 
http:/ / www.sdmi.org. 

secure hash algorithm A specification 
for a secure hash algorithm in which a 
condensed message representation, called a 
MESSAGE DIGEST, can be generated. 

Secure Hypertext Transfer Protocol 

Developed within the Internet standards 
process, this protocol defines the security 
additions to the HTTP protocol. This pro- 
tocol is an application-level protocol 
(TCP/IP four-layer model and OSI seven- 
layer model) and adds encryption and AU- 
THENTICATION to World Wide Web com- 
munications. See RFC 2660. 

NOTE: S-HTTP is now virtually obsolete. 

HTTPS (HTTP using SSL) is currently the most 
dominant protocol for protecting Web traffic , and the 
TLS ( Transport Layer Security) protocol is 
being developed (RFC 2817, RFC 2818). 

Secure Socket Layer Protocol First in- 
troduced in 1994 by Netscape (U.S.), us- 
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FIGURE S2. Secure Socket Layer Protocol stack. 


ing a combination of PUBLIC-KEY and SYMMET- 
RIC CRYPTOSYSTEMS to provide CONFIDENTIALITY, 
DATA INTEGRITY, and AUTHENTICATION of server 
and client, it provides security services just 
above the TCP layer. See Figure S2. 

secure state A condition of an informa- 
tion system in which objects can be ac- 
cessed only by authorized subjects in an 
authorized manner. 

secure subsystem A subsystem contain- 
ing its own implementation of the refer- 
ence monitor concept for those resources it 
controls. A secure subsystem may rely on 
other controls and the base operating sys- 
tem for the control of subjects and the 
more primitive system objects. 

Security Administrator Tool for 
Analyzing Networks Security Adminis- 
trator Tool for Analyzing Networks 
(SATAN), is a network security analyzer 
designed by Dan Farmer and Wietse Ve- 
nema of Sun Microsystems (U.S.). This is 
a freeware program to help find computer 
and network system vulnerabilities. SATAN 
version 1.0 was released in 1995. 

security association (1) A relationship 
between entities represented by a set of in- 
formation or a contract that describes the 


rules of utilization of security services for 
secure communication between these enti- 
ties. The contract must be shared and 
agreed by all involved entities. See RFC 
2408, (2) Security parameters that control 
the agreements — such as cryptographic al- 
gorithms and key strengths — between the 
endpoints in an IPsec tunnel. 

security controls Hardware, firmware, 
or software features that allow only auth- 
orized subjects to access resources within 
an IS. 

security fault analysis An analysis of 
the potential (hardware) faults that may 
occur in a device, and the effects that such 
faults may have on system security. 

Security Features Users Guide A man- 
ual that explains the functions of a specific 
system’s security mechanisms, 

security filter An IS trusted subsystem in 
which security policy is enforced on the 
data passing through it. 

security flaw An error in an IS in which 
the protection mechanism may be weaker 
than expected, by-passable, or faulty. 

security inspection A process to assess 
whether an IS, including its mechanisms, 
policies, procedures, and practices, meets 
its security requirements. 

security kernel The part of an operat- 
ing system responsible for the enforcement 
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of security. Usually used in the context of 
an operating system constructed with such 
functions partitioned from the rest of the 
OS to minimize the chances of security- 
relevant bugs. 

security label A label containing infor- 
mation describing a subject’s or object’s 
sensitivity, such as its hierarchical CLASSIFI- 
CATION (CONFIDENTIAL, SECRET. 
TOP SECRET) and any applicable non- 
hierarchical security categories (e.g„ sensi- 
tive compartmented information or critical 
nuclear weapon design information). 

NOTE: In Australian defense (which is similar to 
U.S., U.K., and Canada) a label may consist of 
five parts: (I) the CLASSIFICATION ( Unclassified , 
Restricted , Confdential } Secret , or Top Secret ), 

(2) any compartment/ category , (3) any releasahility 
(eg., Australian Government Access Only-equiv 
NOFORN) (4) any caveat (eg., commercial in con- 
fdence, medical in confidence), (5) any handling in- 
structions (eg., handle via XX channels only). 

security model A precise statement con- 
taining a system’s security rules. The key 
defining characteristic of a model in com- 
parison to a security policy is that a model 
is an abstraction. See also SECURITY POLICY. 

security net control station A manage- 
ment system that supervises the execution 
of network security policy. 

security perimeter A boundary that 
contains all of an IS’s accredited compo- 
nents and devices, excluding separately ac- 
credited components. 

security policy As defined in the OR- 
ANGE Book, security policy is the set of 
laws, rules, and practices that regulate how 
an organization manages, protects, and dis- 
tributes sensitive information. 

security range The range of the highest 
to lowest security levels allowed in or on 


an IS, system component, subsystem, or 
network. 

security requirements Statements de- 
scribing the security properties that a sys- 
tem must have in order to be acceptable. 

security requirements baseline The 

minimum security requirements for an IS. 

security safeguards The protective 
measures and controls required to meet 
security requirements. Examples include 
security features, management constraints, 
personnel security, and security of physical 
structures, areas, and devices. See also ACCRED- 
ITATION. 

Security Services Markup Language 

A common language for companies to 
share information about transactions and 
end users. An XML-based security services 
technical committee formed by OASIS is 
charged with defining S2ML. 

security specification The detailed de- 
scription of an IS's required safeguards. 

security test and evaluation The ex- 
amination and analysis of a system’s safe- 
guards to determine their adequacy. 

seed key A key for commencing an up- 
dating or key generation process. 

segment The unit of end-to-end trans- 
mission in the TCP protocol. A segment 
consists of a TCP header followed by an 
application data. A segment is transmitted 
by encapsulation inside an IP DATAGRAM. 

self-authentication The authentication 

of all of a secure communications system’s 
transmissions. 

self/group/public controls The cate- 
gorizing of the access control of files. The 
owner determines what file permissions he 
or she (self) will have, what permissions a 
group of users will have, and what permis- 
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sions the rest of the world (public) will 
have. Typical permissions include read, 
write, and execute. 

self-synchronizing An encryption 

scheme in which if some CIPHERTEXT is gar- 
bled by the addition, deletion, or modifica- 
tion of information, some of the message 
will be garbled at the receiver, but at some 
point in the message stream following the 
CIPHERTEXT modification the message will DE- 
CRYPT properly. 

sensitive information Information that 
if misused or modified could unfavorably 
affect the national interest or corporate in- 
terest or the privacy of individuals. 

sensitivity label A label that contains 
information from the security label(s) of a 
subject and an object and is used by the 
TRUSTED COMPUTING BASE (TCB) to make MAN- 
DATORY ACCESS CONTROL decisions. 

separation of duty (1) A condition in 
which some critical operations require the 
cooperation of at least two different peo- 
ple. For example, separation of duty exists 
in a bank vault that has two combination 
locks if no employee knows the combina- 
tion for both locks. The principle is that 
the system will be robust against a single 
corrupt officer, and the likelihood of two 
officers being corrupt is acceptably low. 

(2) Several individuals being assigned 
security-related tasks and granted the least 
number of privileges necessary to carry 
them out. 

Serial line IP An Internet protocol used 
to run IP over serial lines such as telephone 
circuits of RS-232C cables interconnecting 
two systems. SERIAL LINE IP (SLIP) is now be- 
ing replaced by PPP. See also POINT-TO-POINT 
Protocol. See also RFC 1055. 

server Some resource available on a net- 
work to provide some service such as name 


lookup, file storage, or printing. See also 
CLIENT-SERVER MODEL. 

session The set of transactions that is 
exchanged while a transmission channel is 
open. 

session hijacking An intruder taking 
over a connection after the original source 
has been AUTHENTICATED. 

session key A key used to encrypt a 
single message, communications stream, or 
session, 

session layer The OSI layer that pro- 
vides the pathway for dialogue control be- 
tween end systems. 

SFUG Security Features Users Guide. 

SGML Standard Generalized Markup 

Language. 

SHA secure hash algorithm. 

shared key A key shared only by the 
encrypter and decrypter in a shared key 
(symmetric) CRYPTOSYSTEM. See also SECRET KEY. 

NOTE: In a multicast or a conferencing protocol 
a key may be shared by a group of more than two 
people. 

shielded enclosure A room or con- 
tainer which has a boundary that resists the 
transmission of electromagnetic radiation. 
The shielding may be employed to prevent 
the leakage of sensitive emanations from 
the inside, or to prevent delicate systems 
from interference, jamming, or other AT- 
TACK originating outside the enclosure. 

short title A combination of letters and 
numbers used to identify certain COMSEC 
MATERIALS to make handling, accounting, 
and controlling them easier. 

S-HTTP Secure Hypertext Transfer 
Protocol. 
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FIGURE S3. Simple Mail Transfer Protocol. 


sign The use of a private key to generate 
a digital signature. 

Signaling System 7 A telephone proto- 
col with three basic functions: (1) supervis- 
ing, (2) alerting, and (3) addressing. Super- 
vising relates to monitoring the status of a 
circuit, alerting refers to indications of an 
incoming call, and addressing relates to 
routing and destination signals over a net- 
work in dial tone or in the form of digital 
data. 

signals security All COMSEC and elec- 
tronic security. 

signature A quantity associated with a 
message that only someone with knowledge 
of the signer’s PRIVATE KEY could have calcu- 
lated, but which can be verified to be asso- 
ciated to the signer’s PUBLIC KEY (if the mes- 
sage is intact). See DIGITAL SIGNATURE. 

signature detection An intrusion detec- 
tion technique that recognizes an ATTACK 
based on known characteristics or signa- 
tures. 

Simple Key Exchange for Internet 
Protocols Uses public key certificates to 
exchange symmetric keys between two sys- 
tems. More details of Simple Key Ex- 
change for Internet Protocols (SKIP) are 
available at http:/ / www.skip-vpn.org. 

Simple Mail Transport Protocol A 

protocol for sending electronic mail across 


a network, standardized by the IETF. De- 
tails of Simple Mail Transport Protocol 
(SMTP) are given in RFC 821. See 
Figure S3. 

Simple Network Management 
Protocol A protocol for controlling sys- 
tems across a network standardized by the 
IETF. Details of SIMPLE Network Manage- 
ment Protocol (SNMP) are given in RFC 
1157. 

simple security property A property in 
the Bell and LaPadula security model that 
holds if subjects operating at a given secu- 
rity level are prevented from reading ob- 
jects that have a higher security level. This 
is sometimes described as “no read up.” In 
the model, subjects are able to read objects 
that have an equal or lower (“read down”) 
security level. 

Simple Watcher A program that goes 
through the LOG data generated by vari- 
ous security programs, in particular “sys- 
log.” It is capable of responding to high- 
priority events while continuously 
monitoring the LOG in “real time.” 

single-level device An IS device that is 
not trusted to maintain the separation of 
data with different security levels. 

NOTE: /] device may be able to maintain the sep- 
aration reliably , but if it is not required to } or if it 
is not trusted to , then it is effectively a single-level 
device. 

single-point keying A means of distrib- 
uting keys from a single fill point to multi- 
ple, local CRYPTO-EQUIPMENT or devices. 
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SKIP Simple Key Exchange for Inter- 
net Protocols. 

SKIPJACK A SECRET KEY ENCRYPTION algo- 
rithm developed by NSA (U.S.) using 64- 
bit blocks and 80-bit keys. It is embedded 
in Cupper and Capstone chips. It was origi- 
nally CLASSIFIED SECRET but has since 
been declassified and published. 

SLIP Serial line IP. 

smart card A credit-card-sized object 
used for AUTHENTICATION that contains non- 
volatile storage and computational power. 
Some smart cards are capable of perform- 
ing CRYPTOGRAPHIC operations on the card. 
ISO/IEC 7816 standard contains smart 
card specifications. 

SMI STRUCTURE OF MANAGEMENT 

INFORMATION. 

SMTP Simple Mail Transfer Protocol. 

smurf A denial-of-service attack in which 
many PINGS (ICMP echo request packets) 
are broadcast to the network. The “source” 
field is set to the victim’s IP address. Any 
machines that respond will transmit to the 
victim, overloading its network interface. 

sniffer (1) A program that attaches itself 
to a computer system and records the first 
few keystrokes (usually 128) of people log- 
ging in. It then typically transmits this data, 
which may contain password and login in- 
formation, back to the hacker. (2) Programs 
that monitor traffic on the Internet. 

SNMP Simple Network Management 
Protocol. 

SOCKS A circuit-level proxy used to pro- 
tect against application-layer traffic types 
such as HTTP, FTP, TELNET, etc. 

software system test and evaluation 
process Process that plans, develops, and 
documents the quantitative demonstration 


of the fulfillment of all baseline functional 
performance, operational, and interface 
requirements. 

source (1) The origin. (2) Also, the 
name of a field in various networking pro- 
tocols, such as IP, which holds the name or 
address of the source. 

spam (1) To flood a person, newsgroup, 
or a bulletin board with many unwanted 
messages. (2) To overflow buffers with a 
large stream of data. 

special mission modification Required 
or optional modification, relating only to a 
specific mission, purpose, or operational or 
environmental need. 

specification A technical description of 
a system’s intended behavior, which may 
help develop the implementation and pro- 
vide a basis for testing the resulting system, 

speech privacy Disguising speech 
through fixed-sequence permutations or 
voice/speech inversion so that if it is over- 
heard, it will not be understood. 

spiders Software that examines and re- 
cords the contents of new files by travers- 
ing the World Wide Web. 

split knowledge Knowledge that is 
separated among different individuals or 
teams so that no one individual or team 
will have access to all of the separated 
data. See also SEPARATION OF DUTY. 

spoofing Use by an unauthorized indi- 
vidual of legitimate identification and au- 
thentication (I&A) data to impersonate a 
legitimate user, that is, to appear to have a 
different identity from one’s own. Syno- 
nyms are IMPERSONATE and MASQUERADE. See 
also IP SPOOFING. 

spread spectrum A transmitted signal’s 
bandwidth that is considerably greater than 
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the frequency content of the original infor- 
mation, Frequency hopping, direct se- 
quence spreading, time scrambling, and 
combinations of these techniques are forms 
of spread spectrum. 

SPS SCRATCH PAD STORE. 

SRA SUBREGISTRATION AUTHORITY. 

SS 7 Signaling System 7. 

SSL Secure Socket Layer protocol. 

Standard Generalized Markup 
Language An international standard 
(metalanguage) for representing text in 
electronic format in a device-and system- 
independent format. 

star (*) property Bell-L aPadula security 
MODEL rule that prohibits “write downs.” 
That is, a subject operating at one security 
level is not allowed to write to an object 
with a lower level. “Write ups” are permit- 
ted. Also called CONFINEMENT PROPERTY. 

start-up KEK Common KEY ENCRYPTION 
KEY held by a group of potential communi- 
cating entities and used to establish ad hoc 
tactical networks. 

state machine An abstraction or model 
of a system, comprising inputs, outputs, 
and internal (“state”) memory. At any 
time, the output is dependent on the cur- 
rent state (or a combination of the current 
state and the current inputs), and the “next 
state” is a function of the current state and 
the inputs. This abstraction is one of the 
most common ways to describe computer 
systems, components, and protocols. 

state variable Represents either an IS's 
state or a system resource’s state. 

steganography Means by which two or 
more parties may employ subliminal or in- 
visible communication. 


storage object An object in which in- 
formation can be stored (or “written”) and 
subsequently retrieved (or “read”). 

stream encryption An encryption algo- 
rithm that ENCRYPTS and DECRYPTS messages 
of arbitrary size. 

strong A CRYPTOGRAPHIC algorithm is said 
to be strong if it is computationally infea- 
sible to crack, usually assuming that the at- 
tacker has knowledge of the algorithm it- 
self, and possibly some known or chosen 
PLAINTEXT. 

strong authentication An authentica- 
tion where someone eavesdropping on the 
AUTHENTICATION exchange does not gain suf- 
ficient information to impersonate the 
principal in a subsequent AUTHENTICATION. 

structure of management information 

The rules used to define the objects that 
can be accessed via a network management 
protocol. 

subject A person, process, or device that 
transports information among objects or 
changes information to the system state. 

subject security level Sensitivity label(s) 
of the objects to which the subject has 
both read and write access. The CLEARANCE 
level of a subject’s user must always 
be higher than the security level of the 
subject. 

subnet One of the set of hardware net- 
works that compose an IP network. Host 
addresses on a given subnet share an IP net- 
work number with hosts on all other SUB- 
NETS of that IP network, but the local- 
address part is divided into subnet-number 
and host-number fields to indicate which 
SUBNET a host is on. A particular division of 
the local-address part is not assumed; this 
could vary from network to network. See 
Figure S4, 
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Subnet Mask: 255.255.255. 1 28 
Subnet Number: 138.47.34.0 



Subnet Mask: 255.255.255.0 
Subnet Number: 138.47.33.0 


FIGURE S4. Subnet implementation example. 


subnet field The bit field in an Internet 
address denoting the SUBNET number. The 
bits making up this field are not necessarily 
contiguous in the address. 

subnet mask The designation of which 
bits in the Internet DOTTED DECIMAL NOTA- 
TION of address form the SUBNET number. 
Also known as “netmask.” See ADDRESS 
MASK. 

subnet number A number identifying a 
SUBNET within a network. 

subnetwork A collection of end systems 
and intermediate systems under the control 
of a single administrative DOMAIN and util- 
izing a single network access protocol. Ex- 
amples include private X.25 networks and 
a collection of bridged LANs. See SUBNET. 

subregistration authority The individ- 
ual in charge of the DISTINGUISHED NAME 
process. 


substitution An ENCRYPTION algorithm 
where a ONE-TO-ONE MAPPING is performed 
on a fixed-size block, for example, where 
each letter of the alphabet has an enci- 
phered equivalent. Substitution ciphers are 
not very secure unless the block size is 
large, and they cannot be combined with 
permutation ciphers in a series of rounds 
to build strong ciphers like DES. 

subversion A COMPROMISE that under- 
mines integrity. 

superencryption Process of encrypting 
already encrypted information. Occurs 
when a message that has been encrypted 
off-line is transmitted over a secured, on- 
line circuit, or when information encrypted 
by the originator is multiplexed onto a 
communications trunk, which is then bulk 
encrypted. 

supersession The replacement of a 
COMSEC AID by a different edition. 

superuser An operating system concept 
in which an individual is allowed to cir- 
cumvent ordinary security mechanisms. For 
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instance, the system manager must be able 
to read everyone’s files for doing backups, 

supervisor state Synonymous with EX- 
ECUTIVE STATE. (Usually the executive state 
or the supervisor state refers to the state of 
an operating system.) 

suppression measure A measure to re- 
duce or stop COMPROMISING EMANATIONS in 
an IS. 

surrogate access discretionary 

ACCESS CONTROLS. 

SWATCH Simple Watcher. 

syllabary List of individual letters, com- 
binations of letters, or syllables, with their 
equivalent CODE GROUPS, used for spelling 
out words or proper names that are not in 
a code’s vocabulary. A SYLLABARY may also 
be a spelling table. 

syllabify To break a word into syllables 
in order that each might be processed sepa- 
rately in some way. 

symmetric cryptography Secret key 

CRYPTOGRAPHY. Called symmetric because 
the same key is used for encryption and 
DECRYPTION. 

SYN A packet that synchronizes sequence 
numbers between two session endpoints 
during the initiation of a TCP session. 

SYN/ACK An acknowledgement package 
to a TCP SYN request. 

system administrator An individual 
who installs and maintains an information 
system, utilizes the IS effectively, provides 
adequate security parameters, and imple- 
ments established INFOS EC policies and 
procedures. 

system assets Any software, hardware, 
data, or administrative, physical, communi- 
cations, or personnel resource within an IS. 


system development methodologies 

Methodologies for managing the complex- 
ity of system development. Development 
methodologies include software engineering 
aids and high-level design analysis tools. 

system high The highest security level 
of an IS. 

system high mode An IS security mode 
of operation in which all users of the IS 
have all of the following: (1) valid security 
CLEARANCE for all information within an IS; 
(2) formal access approval and signed non- 
disclosure agreements for all the informa- 
tion stored and/ or processed (including all 
compartments, subcompartments, and/or 
special access programs); and (3) valid 
NEED-TO-KNOW for some of the information 
contained within the IS. 

system indicator A distinguishing sym- 
bol or group of symbols in an off-line EN- 
CRYPTED message that identify the specific 
CRYPTOSYSTEM or KEY used in the ENCRYPTION. 

system integrity An attribute of an 
IS when its function is unaffected by any 
sort of unauthorized manipulation of the 
system. 

system low An IS's lowest security level. 

system profile A detailed security 
description of an IS's general operating en- 
vironment, 

system security A system’s determined 
degree of security, as a result of an evalua- 
tion of all of the system elements and 
INFOSEC countermeasures. 

system security engineering The ef- 
fort to provide a system with optimal se- 
curity and survivability throughout its life 
cycle. 

system security evaluation A risk as- 
sessment of a system to discover its vulner- 
abilities and possible security threats. 



system security plan 


system security management plan 

A formal document fully describing the 
responsibilities for meeting system secu- 
rity requirements for planned security 
tasks. 


system security officer Synonymous 
with INFORMATION SYSTEM SECURITY OFFICER. 

system security plan A formal docu- 
ment fully describing the system security 
requirements for planned security tasks. 


127 



This page intentionally left blank 




tampering Altering the proper function- 
ing of equipment through unauthorized 
modification. 

TCB TRUSTED COMPUTING BASE. 

TCP Transmission Control 
Protocol. 

TCP segment The unit of data ex- 
changed between TCP modules. 

TCSEC DoD Trusted Computer System 
Evaluation Criteria. 

telecommunications The preparation, 
transmission, communication, or related 
processing of information (writing, images, 
sounds, or other data) by electrical, electro- 
magnetic, electromechanical, electrooptical, 
or electronic means. 

telecommunications and automated 
information systems security Types of 
security that are superseded by INFORMATION 
SYSTEM SECURITY. 

telecommunications security Security 
related to telecommunications systems. See 
also INFORMATION SYSTEM SECURITY. 

telnet The virtual terminal protocol in 
the Internet suite of protocols. Allows the 


users of one host to log into a remote host 
and interact as normal terminal users of 
that host. In Figure Tl, the TELNET client 
software communicates with the TELNET 
server on a remote machine through TCP. 

TEMPEST The investigating, studying, 
and controlling of COMPROMISING EMANA- 
TIONS from IS equipment. 

TEMPEST test A laboratory test to evalu- 
ate the nature of compromising emanations 
associated with an IS. 

TEMPEST zone A specific area of a facil- 
ity for operating equipment with appropri- 
ate TEMPEST characteristics (TEMPEST ZONE 
assignment). 

test key Key to test COMSEC equipment 
or systems. 

TFTP Trivial File Transfer Protocol. 
TGT ticket-granting ticket. 

threat Any event that is potentially 
harmful to an IS through unauthorized ac- 
cess, destruction, disclosure, modification 
of data, and/ or denial of service. 

threat analysis The analysis of the im- 
pact or severity of a threat on the security 
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Telnet 



FIGURE T 1 . Architecture of a telnet session. 


of the system, of its likelihood or fre- 
quency, and possibly other factors such as 
the skills or resources that would be re- 
quired by an attacker to implement the 
threat. See RISK ANALYSIS. 

threat assessment The determination 
of whether the level of threat determined 
by the THREAT ANALYSIS is acceptable. See also 
RISK ASSESSMENT. 

threat monitoring The analysis, assess- 
ment, and review of information collected 
to locate system events that possibly violate 
system security. 

ticket A data structure constructed by a 
trusted intermediary to enable an AUTHENTI- 
CATION. 

ticketed-oriented Each subject main- 
tains a list of TICKETS, which are unforgeable 
bit patterns. Each subject has one ticket for 
each object it is authorized to access. See 
also LIST-ORIENTED. 


ticket-granting ticket A Kerberos data 
structure that is really a ticket to the KEY 
DISTRIBUTION CENTER. The purpose is to allow 
a user’s workstation to forget a user’s long- 
term SECRET KEY soon after the user logs in. 

tiger team A group of people hired by 
an organization to defeat its own security 
systems so that the organization can learn 
the systems’ weaknesses. See also RED TEAM. 

time bomb A resident computer pro- 
gram in which an unauthorized act occurs 
at a set time. 

time-compliance date The deadline for 
the completion of a mandatory modifica- 
tion to a COMSEC END-ITEM to retain ap- 
proval for operational use. 

time-dependent password A password 
that is valid only at certain times. 

tinkerbell program Programs that issue 
warnings when traffic enters a network 
from a particular address or from a partic- 
ular user. 

TLS Transport Layer Security. 
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TNIEG Trusted Network Interpreta- 
tion Environmental Guideline. 

token (1) An AUTHENTICATION sequence. 
(2) A physical item for identification, usu- 
ally an electronic device that can be in- 
serted in a door or a computer system to 
gain access. 

token authenticator A pocket-sized 
computer used in a CHALLENGE-RESPONSE au- 
thentication scheme. The AUTHENTICATION 
sequences are called TOKENS. 

top-level specification System behavior 
described at an abstract level, for example, 
a functional specification that omits all im- 
plementation details. 

topology A network configuration 
that describes the connection of its nodes. 
Examples include bus, ring, and star 
topologies. 

totient function The number of positive 
integers less than n that are relatively prime 
to n. 

TPI TWO-PERSON INTEGRITY. 

Traditional COMSEC Program A pro- 
gram in which NSA (U.S.) controls the de- 
velopment and, sometimes, the production 
of INFOSEC items. This includes the AU- 
THORIZED Vendor Program. The NSA must 
approve any changes to the INFOSEC end- 
items used in products developed and/ or 
produced by these programs. 

traffic analysis (1) That part of eaves- 
dropping concerned with the analysis of 
which parties are communicating and the 
volumes and timings of those communica- 
tions, rather than the contents of the mes- 
sages themselves. Some encryption systems 
do not protect users against traffic analysis, 
even though all the content may be en- 
crypted. (2) The study of communications 
patterns. 


traffic encryption key A key that en- 
crypts PLAINTEXT, superencrypts previously 
encrypted text, and/ or DECRYPTS CIPHERTEXT. 
Contrast with KEY ENCRYPTION KEY. Similar 
to SESSION KEY. 

traffic-flow security (1) Security mea- 
sures and techniques that prevent traffic 
analysis. (2) Hiding valid messages in an 
ONLINE CRYPTOSYSTEM or secure communica- 
tions system. 

traffic padding The addition of false 
communications or data units to conceal 
the amount of real data units being sent. 

training key A cryptographic key for 
training. 

tranquility Degree of change of security 
levels of objects and subjects while an IS is 
processing an operation. Strong tranquility 
means that no change is allowed. Weak 
tranquility allows changes during an opera- 
tion if the resulting state does not violate 
security requirements. 

transaction (1) The set of exchanges 
required for one message to be transmitted 
to one or more recipients. (2) Sequence 
of tasks needed to be completed for an 
operation. 

transceiver Transmitter— receiver. The 
physical device that connects a host inter- 
face to a local area network such as Ether- 
net. Ethernet transceivers contain electron- 
ics that apply signals to a system’s cables 
and sense collisions. See Figure T2. 

TRANSEC TRANSMISSION SECURITY. 

transmission channel A communica- 
tion path between a sender and a receiver 
for the exchange of data and commands. 

Transmission Control Protocol The 

major transport protocol in the Internet 
suite of protocols providing reliable, 
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FIGURE T2. Transceiver. 


CONNECTION-ORIENTED, full-duplex streams. 

Transmission Control Protocol (TCP) 
specifications were given in RFC 793. See 
Figure T3. 

In Figure T3, packets have an IP ad- 
dress (1) that may be fragmented and 
passed on through the network interface 
(2). See also USER DATAGRAM PROTOCOL, INTER- 
NET FRAGMENT. 

transmission security A component of 
COMSEC resulting from the use of meth- 
ods other than CRYPTANALYSIS to protect 
transmissions from interception and exploi- 
tation. 

transport layer The layer in the OS I 
reference model that is responsible for re- 
liable end-to-end data transfer between 
end systems. In the Internet protocol 
suite, TCP and UDP are TRANSPORT LAYER 
protocols. 


Transport Layer Security A protocol 
that provides CONFIDENTIALITY and INTEGRITY 
services between two communicating appli- 
cations, It was based on the SECURE SOCKET 
Layer Protocol (SSL) developed by Net- 
scape. See RFC 2246, 

transport service Any reliable stream- 
oriented data communication service; for 
example, TCP. 

transposition cipher A cipher that rear- 
ranges the order of encrypted characters 
but does not change the actual characters. 

trap door (1) A hidden software mecha- 
nism triggered to circumvent system secu- 
rity measures. May be a legitimate tech- 
nique that allows users to access source 
code directly by bypassing lengthy log-on 
routines. (2) In CRYPTOGRAPHY, a secret that 
allows to invert a TRAP DOOR FUNCTION. See 
also TRAP DOOR FUNCTION. 

trap door function A function that ap- 
pears irreversible but that has a secret 
method that, if known, allows someone to 
reverse the function. 
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trusted facility management 
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FIGURE T3 . A conceptual view of TCP/IP 
architecture. 


trashing (1) Deleting and possibly over- 
writing an object with pseudo-random data 
to prevent object reuse. Usage: “Trash the 
file.” (2) Physically searching the garbage 
for useful information about the target site, 
such as manuals, internal memos, and other 
proprietary information, 

tripwire A program that counts the 
bytes in files, hashes of file contents and 
permissions and issues a warning when 
there is a change. 

Trivial File Transfer Protocol A simple 
file transfer protocol built on UDP. Details 
of Trivial File Transfer Protocol (TFTP) are 
given in RFC 1350. 

Trojan horse A piece of code embedded 
in a useful program for a malicious purpose, 
for instance, to steal information. Usually 
the term Trojan horse is used rather than 
VIRUS when the offending code does not at- 
tempt to replicate itself into other programs. 

trust (1) A reliance on a system’s ability 
to meet its specifications or live up to its 
expectations. (2) Reliance by one principal 
on another. 


trusted (1) Refers to components that 
are not controlled by the security policy 
and can violate its rules. (2) Refers to 
TRUSTWORTHY components that are expected 
not to violate the security policy. (3) A re- 
liable principle. 

trusted applet An applet that has full 
access to system resources on a client 
computer. 

trusted computer system An IS capa- 
ble of simultaneously processing a range of 
CLASSIFIED or sensitive information, 

trusted computer system evaluation 
criteria DoD Trusted Computer Sys- 
tem Evaluation Criteria. 

trusted computing base All of a com- 
puter system’s protection mechanisms re- 
sponsible for enforcing a security policy. 

trusted distribution The distribution 
of TRUSTED COMPUTING BASE (TCB) hardware, 
software, and firmware components in 
which the TCB is protected from modifi- 
cation. 

trusted facility management 

Administrative procedures, roles, functions, 
privileges, and databases used for secure 
system configuration, administration, and 
operation. 


133 



trusted facility manual 


trusted facility manual A document 
describing a trusted facility’s operational 
requirements, security environment hard- 
ware and software configurations and inter- 
face and all security procedures, measures, 
and CONTINGENCY PLANS. 

trusted guard A computer system that 
enforces a certain guard policy, such as 
preventing the flow of pest programs from 
an untrusted system to a trusted system. See 
also GUARD. 

trusted identification forwarding An 

identification method used in IS networks 
in which an authorized user attempting to 
connect to a receiving host can be verified 
by the sending host through the transmis- 
sion of authentication information. 

trusted intermediary A third party 
such as KDC or CA that permits two 
parties to AUTHENTICATE without the prior 
configuration of keys between those two 
parties. A trusted intermediary may also 
be used for additional functions such as 
key distribution, contrast, or payment 
negotiation, 

trusted network A network that is 
within a FIREWALL. 

Trusted Network Interpretation 
Environmental Guideline Evaluation 
CRITERIA that define the certification criteria 
for trusted networks. Also referred to as 
the Red Book. 

trusted path A secure method for com- 
municating with a TRUSTED COMPUTING BASE. 
Untrusted (potentially malicious) software 
cannot masquerade as the TRUSTED COMPUT- 
ING BASE (TCB) to the user, or as the user to 
the TCB. A user would use the trusted path 
to initiate a login, logout, change of secu- 
rity level, or other security-critical event. 
The TCB uses the trusted path to indicate 
the security, current security state or level, 


or other security-critical information to the 
user. The crtl-alt-del secure attention se- 
quence on some Microsoft operating sys- 
tems initiates a trusted path facility. 

trusted process A process that is able to 
circumvent the system security policy and 
operates only as intended. 

trusted recovery Risk-free recovery 
after a system failure. 

trusted server A server that is TRUST- 
worthy and helps in network AUTHENTICA- 
TION. 

trusted software Software that has been 
produced in a way that makes one confi- 
dent that there are no TROJAN HORSES in the 
code. 

trusted subject A process that is al- 
lowed to bypass security rules. For exam- 
ple, an administrative process, running in 
behalf of the system administrator, is al- 
lowed to bypass BLP rules. 

trusted system (1) A system that is as- 
sessed (typically through a formal evalua- 
tion process) to be able to withstand 
threats and that is or can be relied on to 
do so. (2) A system designed, developed, 
and evaluated in accordance with ORANGE 
Book criteria. 

trusted third party trusted 

INTERMEDIARY. 

trustworthy An attribute describing a 
system that meets (or has been shown to 
meet) its specifications, particularly in the 
areas of reliability, quality, and security. 

TSEC TELECOMMUNICATIONS SECURITY. 

TSEC nomenclature A method for iden- 
tification of the type and purpose of cer- 
tain items of COMSEC MATERIAL. 

tunneling Technology enabling one net- 
work’s data to be sent through another 
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type 4 algorithm 


network’s connections by the encapsulation 
of a network protocol within PACKETS car- 
ried by the second network. 

Turing test A test proposed (1950) by 
Alan Turing (British computer scientist) 
for testing whether a computer has 
achieved artificial human intelligence. The 
test was that a person would communicate 
by keyboard with either the computer or a 
human, and if the tester couldn’t tell which 
was the human and which was the com- 
puter, then the computer had passed the 
Turing test. 

NOTE: Turing’s philosophy of machine and mind 
appeared in the paper COMPUTING MACHINERY 
AND INTELLIGENCE published in the philosophical 
journal Mind in 1950. 

two-part code A code made up of an 
encoding section, in which the vocabulary 
items (with their associated CODE GROUPS) 
are arranged in a systematic order, and a 
decoding section, in which the CODE 
GROUPS (with their associated meanings) are 
arranged in a different systematic order. 

two-person control At least two au- 
thorized individuals, each capable of de- 
tecting incorrect and unauthorized proce- 
dures of a task and each familiar with 
established security and safety require- 
ments, who constantly survey and control 
POSITIVE CONTROL MATERIAL. 

two-person integrity At least two au- 
thorized persons, each capable of detecting 


incorrect or unauthorized security proce- 
dures related to a task, who must present 
when certain COMSEC keying material for 
storage and handling is accessed. See also NO- 
LONE ZONE. 

type 1 An NSA (U.S.) approved CLASSI- 
FIED or CONTROLLED CRYPTOGRAPHIC ITEM for 
securing CLASSIFIED and sensitive U.S. gov- 
ernment information. The term refers only 
to products. Type 1 products contain classi- 
fied NSA algorithms and are available to 
U.S. government users, their contractors, 
and federally sponsored non-U.S. govern- 
ment activities subject to export restric- 
tions in accordance with INTERNATIONAL 

Traffic in Arms Regulations. 

type 2 NSA (U.S.) approved unclassified 
cryptographic equipment, assembly, or 
component for national security systems 
use as defined in Title 40 U.S.C. Section 
1452. 

type 3 algorithm Cryptographic algo- 
rithm that protects unclassified SENSITIVE in- 
formation or commercial information. It is 
registered by the (U.S.) NATIONAL INSTITUTE 
of Standards and Technology (NIST) and 
published as a (U.S.) Federal INFORMATION 
Processing Standard (FIPS). 

type 4 algorithm Unclassified CRYPTO- 
GRAPHIC algorithm, registered by the (U.S.) 
National Institute of Standards and Tech- 
nology (NIST), but not published as a 
(U.S.) Federal Information Processing 
Standard (FIPS). 
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UA ■*" USER AGENT. 

UDP User Datagram Protocol. 

UDP datagram A UDP datagram is the 
unit of end-to-end transmission in the UDP 
protocol. 

UN/CEFACT A United Nations organi- 
zation headquartered in Geneva that deals 
with worldwide technical developments 
and policy in the trade facilitation and 
electronic business. 

unclassified Information that is not 
CLASSIFIED, meaning it does not require pro- 
tection from unauthorized disclosure. 

Unicode Called Unicode Worldwide 
Character Standard is a method of setting 
up binary codes for text or script charac- 
ters. This system can display, process, and 
interchange written characters from differ- 
ent world languages. At present UNICODE 
standard provides distinct code for 34,168 
languages derived from 24 language scripts. 
More details about Unicode are available 
at http:// www.unicode.org. 

NOTE: UNICODE also supports several characters 
used in many classical and historical texts written in 
different languages. 


UNIX A popular multiprogramming op- 
erating system, developed at Bell Laborato- 
ries in 1969 by Ken Thompson and Den- 
nis Ritchie. 

NOTE: UNIX is not an acronym. In 1970 
“Brian Kernighan suggested the name ‘Unix’ in a 
somewhat treacherous pun on ‘Multics’” [DMB79J. 

untrusted process (1) An untrusted 
process is one that even if it attempts to 
do the wrong thing, cannot breach the sys- 
tem security. See the note below. (2) A 
process that has not been evaluated, and it 
is unknown whether it adheres to a partic- 
ular security policy. 

NOTE: A trusted process is one that can he relied 
on and that is presumably TRUSTWORTHY. When 
one develops a system one has to work out which parts 
can he left untrusted ( the more the better). The aim is 
to have the smallest possible trusted kernel. 

updating An automatic or manual CRYP- 
TOGRAPHIC process that modifies the state of 
a COMSEC key, equipment, device, or sys- 
tem. This modification is irreversible. 

U.S.-controlled facility A controlled- 
access base or building run by the U.S. 
government. 
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U.S.-controlled space 


U.S. -controlled space U.S. government- 
controlled room or floor within a non- 
U.S.-controlled facility. 

Usenet An Internet service that started as 
a bulletin board and has expanded to in- 
clude thousands of sites providing service 
worldwide. 

user A person or process that is author- 
ized to access an IS. 

user agent (1) A user agent is any soft- 
ware that retrieves and processes informa- 
tion from web sites for users. Examples of 
user agent include web browsers, plug-ins, 
and media players. (2) A user agent is a 
commonly used term in e-mail and web 
architecture and refers to a layer of soft- 
ware that insulates the user from the vaga- 
ries of that architecture. User agents de- 
scribed in X.400 and X.500 protocols not 
only make things simpler for user but also 
perform specific functions as described in 
the protocols. 

User Datagram Protocol A transport 
protocol in the INTERNET suite of protocols. 

User datagram protocol (UDP), like TCP, 
uses IP for delivery; however, unlike TCP, 

UDP provides for the exchange of DATA- 
GRAMS without acknowledgment or guaran- 
teed delivery. 

user ID An IS's method of identifying a 
specific user by a unique symbol or charac- 
ter string. 


user partnership program A U.S. gov- 
ernment program in which the NSA (U.S.) 
and a U.S. government agency work to- 
gether to develop secure IS equipment in- 
corporating NSA-approved CRYPTOGRAPHY. 
The result is that national security infor- 
mation in the user’s specific application is 
safeguarded by the authorized product or 
system. 

user profile (1) Information about a 
user. In the context of intrusion detection, 
a profile generally includes historical pat- 
terns of use, against which current patterns 
of use can be compared to decide whether 
the current action is an intrusion. (2) Pat- 
terns of a user’s activity that track abnor- 
mal behavior. 

user representative A member of an 
organization who is authorized to order 
COMSEC keying material, interface with 
the keying system, provide information to 
key users, and ensure that the correct type 
of key is ordered. 

UUCP UNIX to UNIX Copy Program. 

A protocol used for communication be- 
tween consenting UNIX systems. 

uudecode A UNIX utility for reversing 
the effect of UUENCODE. 

uuencode A UNIX utility for encoding 
arbitrary binary data as printable characters 
by encoding six bits of binary data per 
character. 


138 



V 


vaccine A program that searches for and 
removes virus in a computer system. Some- 
times a vaccine can restore previously “in- 
fected” files to their original state. In other 
cases, a file may be irreparable. 

validation The process by which one or 
more departments or agencies and their 
contractors establish joint usage of an IS 
through the application of specialized secu- 
rity tests and evaluation procedures, tools, 
and equipment. 

van Eck monitoring Using low levels of 
electromagnetic emissions from a device to 
monitor the activity of a computer or 
other electronic device. Named after Dutch 
scientist Wim van Eck. 


verify a signature Perform a crypto- 
graphic calculation using a message, a 
signature, and a PUBLIC KEY to determine 
whether the signature was generated by 
someone knowing the corresponding 
PRIVATE KEY signing the message. 


virtual password An IS password com- 
puted from a PASSPHRASE that fills the re- 
quirements for password storage (e.g., 64 
bits). 


virtual private network A protected IS 
link that uses tunneling, security controls 
(see INFORMATION ASSURANCE), and endpoint 
address translation so that to the user 
it seems as if there is a dedicated line be- 
tween nodes. 


NOTE : Details of VAN Eck MONITORING are 
available in the original paper [ WVE851 by Wim 
van Eck. 

variant A code symbol that has the same 
PLAINTEXT equivalent as one or more other 
code symbols. 

verified design A design that has been 
modeled mathematically and formally 
proved to comply with a security policy. 


virus A piece of a computer program 
that replicates by embedding itself in 
other programs. When those programs 
are run, the virus is invoked again and 
spread further. 

NOTE: Eugene Spajford wrote in a technical report 
[ES91], that the first published use of the word 
VIRUS was by David Gerrod in his science fction 
short stories which were later expanded and published 
in the book “When Harlie Was One” [GD72J. 
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This hook described a program named VIRUS that 
would randomly dial the phone until it found another 
computer , then break into that system and inject it 
with a copy of itself. The inventor planned a program 
VACCINE that could cure VIRUS, but the plan re- 
sults in disaster, because noise on a phone line causes 
the VIRUS to mutate so VACCINE is no longer 
effective. 

Fred Cohen first used the term COMPUTER 
VIRUS in a formal way at University of 
Southern California [CF84]. According to 
him: “We define a computer ‘virus’ as a 
program that can infect other programs by 
modifying them to include a possibly 
evolved copy of itself.” In his Ph.D. disser- 
tation [CF85], he credits his adviser, L. 
Adleman, with originating the terminology. 


This dissertation is a mathematical treat- 
ment of computer viruses and contains for- 
mal definition of a virus and many proofs 
related to virus defense. 

voice system A biometric system in 
which a vocal pattern must be matched 
with a stored pattern to gain access. 

VPN VIRTUAL PRIVATE NETWORK. 

vulnerability An exploitable weakness in 
an IS, system security procedures, design, 
internal controls, or implementation, 

vulnerability assessment The system- 
atic examination of an IS or product to 
gauge the effectiveness of its security 
system. 





Wassenaar Arrangement The Wasse- 
naar Arrangement is an international agree- 
ment among 33 cofounding nations on ex- 
port controls for conventional arms and 
dual-use goods and technologies. By pro- 
viding greater visibility of arms and dual- 
use technology exports, the agreement 
aims to ensure regional and international 
peace, security, and stability. Member 
countries must control their export 
policies to conform to the Wassenaar 
agreement. The agreement received final 
approval in July 1996 and started opera- 
tions in September 1996. The Wassenaar 
Arrangement is headquartered in Vienna, 
and plenary meetings are held at least once 
a year. 

The Dual-Use List, or Basic List 
(Tier 1), consists of a Sensitive List 
(Tier 2) and a Very Sensitive List (Tier 
2 subset), and includes such items as 
stealth technology materials and high- 
powered computers. Countries are to use 
“extreme vigilance” in exports of these 
technologies. 

The U.S. Department of Commerce 
controls the export of dual-use goods and 
technologies, and the U.S. Department of 


State controls the export of conventional 
arms. 

The U.S. government controls the 
export of CRYPTOGRAPHIC products under 
the Wassenaar arrangement. See http:/ / 
www.bxa.doc.gov/Wassenaar/ for more 
details and a list of items in the Dual-Use 
List. 

WinNuke A form of attack that affects 
only computers running Windows NT 
3.51 or Windows NT 4. Rather than re- 
turning an error code for bad data in the 
TCP header, it sends NT to the Blue Screen 
of Death (BSOD). 

wiretapping Electronic eavesdropping 
on communications. Taps may be ACTIVE 
or PASSIVE. They can be implemented with 
hardware devices or software. See also ACTIVE 
THREAT and PASSIVE THREAT. 

work factor An estimate of the compu- 
tational resources required to defeat a given 
CRYPTOGRAPHIC system. 

worm A self-contained program that 
replicates by running copies of itself, usu- 
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worm attack 


ally on different machines across a com- 
puter network. 

worm attack An ATTACK in which a 
worm acts in an unexpected way, possibly 
making use of security vulnerabilities or 
causing denials of service. 


write To send information from a sub- 
ject to an object. The basic function in an 
IS. See also ACCESS TYPE. 

write access Permission to write to an 
object in an IS. 
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X 


X.400 ACCITT(ITU) standard for elec- 
tronic mail. 

X.500 ACCITT(ITU) standard for direc- 
tory services. 

X.509 ACCITT(ITU) standard for secu- 
rity services within the X.500 directory ser- 
vices framework. 

X.800 A CCITT (ITU) standard and a sup- 
plement to the ISO reference model that 
provides the OSI security architecture. It 


provides measures to secure data in com- 
municating open systems by providing se- 
curity services in each layer of the ISO ref- 
erence model. It also provides appropriate 
security mechanisms that can be used to 
implement services. For more information 
refer to Security Architecture for Open 
Systems Interconnection for CCITT Appli- 
cations (Recommendation X.800), CCITT, 
Geneva, 1991. 


XDR External Data Representation. 
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Y 


Yellow Pages A directory service part of 
Sun Microsystems’ distributed environment. 

NOTE! This name is now deprecated because of a 
legal threat from publishers of telephone directories. 



The current name is NIS (Network Information 
Services f 


YP Yellow Pages. 
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zero fill The filling of empty storage 
locations in an IS with the character 
representing zero. 

zeroize To remove the key from a 
CRYPTO-EQUIPMENT or fill device. 

zero knowledge proof A scheme in 
which one principal can demonstrate 
knowledge of a secret to another princi- 
pal, without actually divulging the secret 
itself. 

zombie (1) UNIX processes that termi- 
nate leaving status information in the sys- 
tem [WS93], For example, a child process 
that has terminated but its parent PROCESS 


is not executing a “wait” system call. In 
this case the kernel releases the resources 
such as memory, associated files allocated 
to the zombie process but keeps its exit 
status. (2) Multiple processes on multiple 
hosts that perform DENIAL OF SERVICE ATTACK 
(DoS) simultaneously. Distributed Denial OF 
SERVICE (DDoS) attacks can occur when 
multiple sites simultaneously perform a 
DoS attack on the same victim. To con- 
struct these attacks, an intruder may plant 
multiple processes on multiple hosts. These 
processes, called zombies, all perform the 
DoS attack simultaneously. 

zone of control An inspectable space. 
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ACL Access Control List 
ACO Access Control Officer 
ADM Advanced Development Model 
ADP Automated Data Processing 
AE Application Entity 
AES Advanced Encryption Standard 
AFIWC Air Force Information Warfare 
Center 

AH Authentication Header 
AIG Address Indicator Group 
AIN Advanced Intelligence Network 
AIRK Area Interswitch Rekeying Key 
AIS Automated Information System 
AISS Automated Information Systems 
Security 

AJ Anti-Jamming 
AK Automatic Remote Rekeying 
AKDC Automatic Key Distribution 
Center 

AKD/RCU Automatic Key Distribution/ 
Rekeying Control Unit 


AKMC Automated Key Management 
Center 

AKMS Automated Key Management 
System 

ALC Accounting Legend Code 
AMS 1. Auto-Manual System 
2. Autonomous Message Switch 
ANDVT Advanced Narrowband Digital 
Voice Terminal 

ANSI American National Standards 
Institute 

AOSS Automated Office Support 
Systems 

APC Adaptive Predictive Coding 
API Application Program Interface 
APU Auxiliary Power Unit 
ARL Authority Revocation List 
ARP Address Resolution Protocol 
ARPA Advanced Research Project 
Agency 

ARPANET Advanced Research Projects 
Agency Network 



Commonly Used Abbreviations and Acronyms 


ASCII American Standard Code for 
Information Interchange 
ASN 1 Abstract Syntax Notation 1 
ASPJ Advanced Self-Protection Jammer 

ASSIST Program Automated 

Information System Security Incident 
Support Team 

ASU Approval for Service User 
ATM Asynchronous Transfer Mode 
AUTODIN Automatic Digital Network 
A V Auxiliary Vector 
AVP Authorized Vendor Program 

BCA Brand Certification Authority 
BCI Brand CRL Identifier 
BER Basic Encoding Rule 
BIN Bank Identification Number 
BSD Berkeley Software Distribution 

C2 1. Command and Control 
2. Controlled Access Protection 
C2W Command and Control Warfare 
C3 Command, Control, and 
Communications 

C3I Command, Control, Communications 
and Intelligence 
C4 Command, Control, 

Communications, and Computers 
C A 1 . Controlling Authority 

2. Cryptanalysis 3. COMSEC Account 
4. Command Authority 5. Certification 
Authority 

CALEA Communications Assistance for 
Law Enforcement Act 
CAP Controlled Access Point 
CAPI Cryptographic Application 
Programming Interface 


CAW Certificate Authority Workstation 
CBC Cipher Blocking Chaining 
CC Common Criteria 
CCA Cardholder Certification Authority 
CCEP Commercial COMSECT 
Endorsement Program 
CCI Controlled Cryptographic Item 
CCITT Comite Consultatif International 
Telephonique et Telegraphique 
CCO Circuit Control Officer 
CDC Certificate Distribution Center 
CDR Certificate Decoder Ring 
CDS Cryptographic Device Services 
CDSA Common Data Security 
Architecture 

CEOI Communications Electronics 
Operating Instruction 
CEPR Compromising Emanation 
Performance Requirement 
CER 1. Cryptographic Equipment 
Room 2. Communications Equipment 
Room 

CERT Computer Security Emergency 
Response Team 

CESG Communications Electronics 
Security Group 
CFB Ciph er Feedback 
CFD Common Fill Device 
CGI Common Gateway Interface 
CHAP Challenge Handshake 
Authentication Protocol 
Cl AC Computer Incident Advisory 
Capability 

CIK Cryptographic Ignition Key 

CIP Crypt o-Ignition Plug 

CIPSO Common IP Security Option 


152 



Commonly Used Abbreviations and Acronyms 


CIRK Common Interswitch Rekeying 
Key 

CIRT Computer Security Incident 
Response Team 

CIX Commercial Internet Exchange 
CK Compartment Key 
CKG Cooperative Key Generation 
CKL Compromised Key List 
CLMD COMSEC Local Management 
Device 

CLNP Connectionless Network 
Protocol 

CMOS COMSEC Material Control 
System 

CMS Cryptographic Message Syntax 
CNCS Cryptonet Control Station 
CND Computer Network Defense 
CNK Cryptonet Key 
COCOM Coordinating Committee for 
Multilateral Export Controls 
COI Community of Interest 
COMINT Communications Intelligence 
COMPUSEC Computer Security 
COMSEC Communications Security 
CONOP Concept of Operations 
COPS Computer Oracle and Password 
System 

COR 1. Central Office ol Record 
(COMSEC) 2. Contracting Officer 
Representative 

COTS Commercial off-the-shelf 
CPS 1. COMSEC Parent Switch 
2. Certification Practice Statement 
CPU Central Processing Unit 
CRAM Challenge Response 
Authentication Mechanism 


CRC Cyclic Redundancy Code 
CRC CRC with 32-bit output 
CRL Certificate Revocation List 
CRP COMSEC Resources Program 
(Budget) 

CRS Certificate Request Syntax 
CSE Communications Security 
Element 

CSIRT Computer Security Incident 
Response Team 

CSM Certificate Services Manager 
CSMA Carrier Sense Multiple Access 
with Collision Detect 
CSS 1. Central Security Service 

2. COMSEC Subordinate Switch 

3. Constant Surveillance Service 
(Courier) 4. Continuous Signature 
Service (Courier) 5. Coded Switch 
System 

CSOR Computer Security Objects 
Register 

CSP Cryptographic Security Provider 
CSSM Common Security Services 
Manager 

CSSO Contractor Special Security 
Officer 

CSTVRP Computer Security Technical 
Vulnerability Report Program 
CT&E Certification Test and 
Evaluation 

CTAK Cipher Text Auto-Key 
CTCPEC Candian Trusted Computer 
Product Evaluation Criteria 
CTTA Certified TEMPEST Technical 
Authority 

CUP COMSEC Utility Program 
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Commonly Used Abbreviations and Acronyms 


DAA Designated Approving Authority 
DAC Discretionary Access Control 
DAMA Demand Assigned Multiple 
Access 

DAP Directory Access Protocol 
DARPA Defense Advanced Research 
Projects Agency 

DASS Distributed Authentication 
Security Service 

DCID Director Central Intelligence 
Directive 

DCE Distributed Computing 
Environment 

DCS 1. Defense Communications System 
2. Defense Courier Service 
DCSP Desig n Controlled Spare 
Part(s) 

DDoS Distributed Denial of Service 
Attack 

DDI Deputy Director of Operations, 
NSA/CSS 

DDS Dual Driver Service (courier) 

DDT Deputy Director of Technology, 
NSA/CSS 

DEA Data Encryption Algorithm 
DEK Data Encryption Key 
DER Distinguished Encoding Rule 
DES Data Encryption Standard 
DIB Directory Information Base 
Dll Defense Information Infrastructure 
DISN Defense Information System 
Network 

DITSCAP DoD Information Technology 
Security Certification and Accreditation 
Process 

DN Distinguished Name 


DoD TCSEC Department of Defense 
Trusted Computer System Evaluation 
Criteria 

DOI Domain Of Interpretation 
DOS 1. Denial of Service Attack 
2. Disk Operating System 
DLED Dedicated Loop Encryption 
Device 

DMA Direct Memory Access 
DMAT Digital Music Access Technology 
DMS Defense Message System 
DN Distinguished Name 
DNS Domain Name System 
DPL De gausser Products List (a section 
in the INFOSEC Products and Services 
Catalogue ) 

DSA Digital Signature Algorithm 
DSN Defense Switched Network 
DSS Digital Signature Standard 
DST Digital Signature Trust 
DSVT Digital Subscriber Voice Terminal 
DTLS Descriptive Top-Level 
Specification 

DTD Data Transfer Device 
DTS Diplomatic Telecommunications 
Service 

DUA Directory User Agent 

EAM Emergency Action Message 
EBCDIC Extended Binary Code Decimal 
Interchange Code 

ebXML E-business XML standard 
ECB Electronic Code Book 
ECC Elliptic Curve Cryptography 
ECCM Electronic Counter- 
Countermeasures 
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Commonly Used Abbreviations and Acronyms 


ECDSA Elliptic Curve Digital Signature 
Algorithm 

ECM Electronic Countermeasures 
ECPL Endorsed Cryptographic Products 
List (a section in the INFOSEC, 
Information System Security Products and 
Services Catalogue ) 

EDAC Error Detection and Correction 
EDE Encrypt/Decrypt/Encrypt 
EDESPL Endorsed Data Encryption 
Standard Products List 
EDI Electronic Data Interchange 
EDM En gineering Development 
Model 

EES Escrowed Encryption Standard 
EFD Electronic Fill Device 
EFTO Encrypt For Transmission Only 
EGADS Electronic Generation, 

Accounting and Distribution System 
EGP Exterior Gateways Protocol 
EKMS Electronic Key Management 
System 

ELINT Electronic Intelligence 
ELSEC Electronic Security 
E Model En gineering Development 
Model 

EMSEC Emission Security 
EPL Evaluated Products List (a section 
in the INFOSEC Products and Services 
Catalogue ) 

ERTZ Equipment Radiation TEMPEST 
Zone 

ESP Encapsulating Security Payload 
ETL Endorsed Tools List 
ETPL Endorsed TEMPEST Products 
List 


EUCI Endorsed for Unclassified 
Cryptographic Information 
EV Enforcement Vector 
EW Electronic Warfare 

FDDI Fiber Distributed Data Interface 
FDIU Fill Device Interface Unit 
FIPS Federal Information Processing 
Standard 

FIRST Forum Of Incident Response and 
Security Teams 

FIX Federal Internet Exchange Points 
FOCI Forei gn Owned, Controlled, or 
Influenced 

FOIA Freedom of Information Act 
FOUO For Official Use Only 
FPKI Federal Public Key Infrastructure 
FSRS Functional Security Requirements 
Specification 

FSTS Federal Secure Telephone Service 
FTP File Transfer Protocol 
FTS Federal Telecommunications System 
FTAM File Transfer Access Management 
FTLS Formal Top -Level Specification 

GASSP Generally Accepted Systems 
Security Principles 

GCA Geopolitical Certificate Authority 
GCCS Global Command and Control 
System 

GCD Greatest Common Divisor 
GETS Government Emergency 
Telecommunications Service 
GPS Global Positioning System 
GSM Global System for Mobile 
Communications 
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GSS-API Generic Security Service 
Application Program Interface 
GTS Global Telecommunications Service 
GWEN Ground Wave Emergency 
Network 

HDM Hierarchical Development 
Methodology 

HMAC Hashed Message Authentication 
Code 

HTML Hypertext Markup Language 
HTTP Hypertext Transfer Protocol 
HUS Hardened Unique Storage 
HUSK Hardened Uniq ue Storage Key 

IA Information Assurance 
I & A Identification and Authentication 
IAB Internet Activity Board 
IANA Internet Assigned Number 
Authority 

IBAC Identity Based Access Control 
ICANN Internet Corporationn for 
Assigned Names and Numbers 
ICMP Internet Control Message Protocol 
ICRL Indirect Certificate Revocation List 
ICU Interface Control Unit 
IDEA International Data Encryption 
Algorithm 

IDES Intrusion Detection Expert System 
IDIOT Intrusion Detection In Our Time 
IDM Intrusion Detection Model 
IDS Intrusion Detection System 
IEEE Institute of Electrical and 
Electronics Engineers 
IEMATS Improved Emergency Message 
Automatic Transmission System 


IESG Internet Engineering Steering 
Group 

IETF Internet Engineering Task Force 
IFCC Internet Fraud Complaint Center 
(U.S.) 

IFF Identification, Friend or Foe 
IFFN Identification, Friend, Foe, or 
Neutral 

IGP Interior Gateway Protocol 
IIRK Interarea Interswitch Rekeying 
Key 

IK Interswitch Rekeying Key 
IKE Internet Key Exchange 
ILS Integrated Logistics Support 
IMAP Internet Message Access 
Protocol 

INFOSEC Information System Security 
InterNIC Internet Network Information 
Center 

IO Information Operations 
IOB Intelli gence Oversight Board (The 
U.S. President’s) 

IOTP Internet Open Trading Protocol 
IP Internet Protocol 
IPM Interpersonal Messaging 
IPNG Internet Protocol Next Generation 
IPRA Internet Policy Registration 
Authority 

IPsec Internet Protocol Security 
IPSO Internet Protocol Security Option 
IR Information Ratio 
IRC Internet Relay Chat 
IRTF Internet Research Task Force 
IS Information System 
ISAKMP Internet Security Association 
and Key Management Protocol 
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ISDN Integrated Services Digital 
Network 

ISO International Organization for 
Standardization 

ISOC Internet Society 

ISS 1. Information System Security 
2. Internet Security Systems 3. Internet 
Security Scanner 

ISSA Information System Security 
Association 

ISSM Information System Security 
Manager 

ISSO Information System Security 
Officer 

IT Information Technology 

ITAR International Traffic in Arms 
Regulation 

ITSEC Information Technology Security 
Evaluation Criteria 

ITU International Telecommunications 
Union 

IV Initialization Vector 

JVM Java Virtual Machine 


KMID Key Management Identification 
Number 

KMODC Key Management Ordering and 
Distribution Center 
KMP Key Management Protocol 
KMPDU Key Management Protocol 
Data Unit 

KMS Key Management System 
KMSA Key Management System 
Agent 

KMUA Key Management User Agent 
KP Key Processor 
KPK Key Production Key 
KSOS Kernelized Secure Operating 
System 

KVG Key Variable Generator 

LCMS Local COMSEC Management 
Software 

LDAP Lightweight Directory Access 
Protocol 

LEAD Low-Cost Encryption/ 
Authentication Device 
LEAF Law Enforcement Access Field 


JIVA Joint Intelligence Virtual 
Architecture 

JSIWC Joint Service Information 
Warfare Command 

KAK Key -Auto-Key 
KDC Key Distribution Center 
KEA Key Exchange Algorithm 
KEK Key Encryption Key 
KG Key Generator 
KMASE Key Management Application 
Service Element 

KMC Key Management Center 


LKG Loop Key Generator 
LMD Local Management Device 
LMD/KP Local Management 
Device/Key Processor 
LME Layer Management Entry 
LMI Layer Management Interface 
LOCK Logical Coprocessing Kernel 
LOD Leg ion Of Doom 
LPC Linear Predictive Coding 
LPD Low Probability of Detection 
LPI Low Probability of Intercept 
LRA Local Registraion Authority 
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LRIP Limited Rate Initial Preproduction 
LSI Large Scale Integration 

MAC 1. Mandatory Access Control 
2. Media Access Control 
MAN Metropolitan Area Network 
MATSYM Material Symbol 
MCA Merchant Certification Authority 
MCCB Modification/ Configuration 
Control Board 

MCG Meta-Certificate Group 
MCTL Military Critical Technology List 
MDC Manipulation Detection Code 
MEECN Minimum Essential Emergency 
Communications Network 
MEP Management Engineering Plan 
MER Minimum Essential Requirements 
MHS Message Handling System 
Ml Message Indicator 
MIB Management, Information Base 
MIC Message Integrity Code 
MIJI Meaconing, Intrusion, Jamming, 
and Interlace 

MIME Multipurpose Internet Mail 
Extensions 

MINTERM Miniature Terminal 
MISSI Multilevel Information Systems 
Security Initiative 
MU Multilevel Integrity 
MLS Multilevel Security 
MNCKS Mobile Network Computer 
Reference Specifications 
MOSS MIME Object Security Service 
MQV Menezes— Qu— Vanstone key 
agreement scheme 

MRT Miniature Receiver Terminal 


MSE Mobile Subscriber Equipment 
MSP Message Security Protocol 
MTU Maximum Transmission Unit 
Multics Multiplexed Information and 
Computing Service 
MVTO Multiversion Timestamp 
Ordering 

NACAM National COMSEC Advisory 
Memorandum 

NACSI National COMSEC Instruction 
NACSIM National COMSEC 
Information Memorandum 
NAK Negative Acknowledge 
NAT Network Address Translator 
NC Network Computer 
NCCD Nuclear Command and Control 
Document 

NCRP Network Computer Reference 
Specification 

NCS 1. National Communications 
System 2. National Cryptologic School 
3. Net Control Station 
NCSA National Computer Security 
Association 

NCSC National Computer Security 
Center 

NFS Network File System 
NIAP National Information Assurance 
Partnership 

NIC Network Information Center 
NISAC National Industrial Security 
Advisory Committee 

NIST National Institute of Standards and 
T echnology 

NKSR Nonkernel Security Related 


158 



Commonly Used Abbreviations and Acronyms 


NLZ No-Lone Zone 
NOIC National Organization of Internet 
Commerce 

NSA National Security Agency 
NSAD Network Security Architecture 
and Design 

NSCID The National Security Council 
Intelligence Directive 
NSD National Security Directive 
NSDD National Security Decision 
Directive 

NSEP National Security Emergency 
Preparedness 

NSI National Security Information 
NSM Network Security Monitor 
NSO Network Security Officer 
NSTAC National Security 
T elecommunications Advisory 
Committee 

NSTISSAM National Security 

Telecommunications and Information 
Systems Security Advisory/Information 
Memorandum 

NSTISSC National Security 

Telecommunications and Information 
Systems Security Committee 
NSTISSD National Security 

Telecommunications and Information 
Systems Security Directive 
NSTISSI National Security 

Telecommunications and Information 
Systems Security Policy 
NTCB Network Trusted Computing 
Base 

NTIA National Telecommunications 
and Information Administration 


NTISSAM National Telecommunications 
and Information Systems Security 
Advisory/Information Memorandum 
NTISSD National Telecommunications 
and Information Systems Security 
Directive 

NTISSI National Telecommunications 
and Information Systems Security 
Instruction 

NTISSP National Telecommunications 
and Information Systems Security Policy 
NW3C National White Collar Crime 
Center (U.S.) 

OASIS Or ganization for the Advance- 
ment of Structured Information 
Standards 

OADR Originating Agency’s 
Determination Required 
OCSP Online Certificate Status Protocol 
OFB Output Feedback Mode 
OID Object Identifier 
OPCODE Operations Code 
OPSEC Operations Security 
OPUS Obvious Password Utility System 
ORA Organizational Registration 
Authority 

OSF Op en Software Foundation 
OSI Open System Interconnect 
OSPF Open Short Path First 
OTAD Over-the-Air Key Distribution 
OTAR Over-the-Air Key Rekeying 
OTAT Over-the-Air Key Transfer 
OTP 1. One-Time Pad 
2. One-Time Password 
OTT One-Time Tape 
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P2P Peer -to-peer 

P3P Platform for Privacy Preferences 
Projects 

PAA Policy Approving Authority 
PAAP Peer Access Approval 
PAE Peer Access Enforcement 
PAL Permissive Action Link 
PAN Primary Account Number 
PAP Password Authentication Protocol 
PC Personal Computer 
PC A Policy Creation Authority 
PCI Private Communication Technology 
PCMCIA Personal Computer Memory 
Card International Association 
PCZ Protected Communications Zone 
PDR Preliminary Design Review 
PDS 1. Protected Distribution Systems 
2. Practices Dangerous to Security 
PDU Protocol Data Unit 
PEM Privacy Enhanced Mail 
PES Positive Enable System 
PFS Public Key Forward Secrecy 
PGP Pretty Good Privacy 
PICA Platform Independent 
Cryptography 

PICS Platform for Internet Control 
Selection 

PIN Personal Identification Number 
PKA Public Key Algorithm 
PKC Public Key Cryptography 
PKCS Public Key Cryptography Standard 
PKI Public Key Infrastructure 
PKIX-CMP Internet X.509 Public Key 
Infrastructure Certificate Management 
Protocols 

PKSD Programmable Key Storage Device 


P Model Preproduction Model 
PNEK Post-Nuclear Event Key 
POP3 Post Office Protocol, version 3 
PPP Point to Point Protocol 
PPL Preferred Products List (a section 
in the INFOSEC Products and Services 
Catalogue ) 

PPTP Point to Point Tunneling Protocol 
PRBAC Partition Rule-Based Access 
Control 

PROM Programmable Read-Only 
Memory 

PROPIN Proprietary Information 
PSL Protected Services List 
PWDS Protected Wireline Distribution 
System 

QoS Quality of Service 

RA Re gistration Authority 
RACE Rapid Automatic Cryptographic 
Equipment 

RADIUS Remote Authentication Dial-In 
User Service 

RAMP Rating Maintenance Program 
RARP Reverse Address Resolution 
Protocol 

RAT Remote Access Trojan 
RBAC Role Based Access Control 
RC2 Rivest Cipher 2 
RC4 Rivest Cipher 4 
RCP UNIX command 
RFC Requests For Comments 
RFS Remote Procedure Call 
RIP Routing Information Protocol 
RPC Remote Procedure Call 
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RSA Rivest— Shamir— Aldeman Algorithm 
RQT Reliability Qualifications Tests 

S2ML Security Services Markup 
Language 

SA Systems Administrator 
SABI Secret and Below Interoperability 
SAID Security Association Identifier 
SAO Special Access Office 
SAP 1. System Acquisition Plan 
2. Special Access Program 
SARK SAVILLE Advanced Remote 
Keying 

SASL Simple Authentication and 
Security Layer 

SATAN Security Administrator Tool 
for Analyzing Networks 
SBU Sensitive But Unclassified 
SCA Subordinate Certification 
Authority 

SCI Sensitive Compartmented 
Information 

SCIF Sensitive Compartmented 
Information Facility 
SDE Secure Data Exchange 
SDMI Secure Digital Music Initiative 
SDNRIU Secure Digital Net Radio 
Interface Unit 

SDNS Secure Data Network System 
SDR System Design Review 
SET Secure Electronic Transaction 
SFA Security Fault Analysis 
SFUG Security Features Users Guide 
SGML Standard Generalized Markup 
Language 

SHA Secure Hash Algorithm 


SHS Secure Hash Standard 
SHTTP Secure HyperText Transfer 
Protocol 

SI Special Intelligence 
SIGSEC Signals Security 
SIGINT Signals Intelligence 
SISS Subcommittee on Information 
Systems Security 

SKIP Simple Key Exchange for Internet 
Protocols 

SLIP Serial Line Interface Protocol (now 
PPP) 

SMI Structure of Management 
Information 

SMIME Secure MIME 
SMTP Simple Mail Transport Protocol 
SMU Secure Mobile Unit 
SNMP Simple Network Management 
Protocol 

SPK Single Point Key(ing) 

SPI Security Parameters Index 
SPS Scratch Pad Store 
SRA Sub-Re gistration Authority 
SRR Security Requirements Review 
SS 7 Signaling System 7 
SSI Server Side Include 
SSL Secure Socket Layer Protocol 
SSO 1. System Security Officer 
2. Special Security Officer 
ST&E Security Test and Evaluation 
STE Secure Terminal Equipment 
STS Subcommittee on 

T elecommunications Security 
STT Secure Transaction Technology 
STU Secure T eleph one Unit 
SWATCH Simple Watcher 
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TA Traffic Analy sis 
TAC Terminal Access Controller 
TACTED Tactical Trunk Encryption 
Device 

TAG TEMPEST Advisory Group 
TAISS Telecommunications and 
Automated Information Systems 
Security 

TCB Trusted Computing Base 
TCD Time Compl iance Data 
TCP Transmission Control Protocol 
TCMM Trusted Capability Maturity 
Model 

TCSEC DoD Trusted Computer System 
Evaluation Criteria 
TD Transfer Device 
TDEA Triple Data Encryption 
Algorithm 

TED Trunk Encryption Device 
TEK Traffic Encryption Key 
TEP TEMPEST Endorsement Program 
TEMPEST T elecommunications 
Electronics Material Protected from 
Emanating Spurious Transmissions 
TESS The Exponential Encryption 
System 

TFM Trusted Facility Manual 
TFS Traffic Flow Security 
TFTP Trivial File Transfer Protocol 
TGS Ticket-Granting Server 
TGT Ticket-Granting Ticket 
TIS Trusted Information Systems 
TLS 1. Top -Level Specification 
2. Transport Layer Security 
TLSP Transport Layer Security 
Protocol 


TNI Trusted Network Interpretation 
TNIEG Trusted Network Interpretation 
Environment Guideline 
TPC Two-Person Control 
TPEP Trusted Products Evaluation 
Program 

TPI Two-Person Integrity 
TPM Trust Policy Manager 
TRANSEC Transmission Security 
TRB Technical Review Board 
TRI-TAC Tri-Service Tactical 
Communications System 
TSCM Technical Surveillance 
Countermeasures 

TSEC Telecommunications Security 
TSIG Trusted Systems Interoperability 
Group 

TSK Transmission Security Key 
TSR Terminate and Stay Resident 
TTP Trusted Third Party 

UA User A gent 
UDP User Data Protocol 
UIRK Uniq ue Interswitch Rekeying 
Key 

UIS User Interface System 
UN/CEFACT United Nations Center 
for Trade Facilitation and Electronic 
Business 

UPP User Partnership Program 
URI Uniform Resource Identifier 
URL Uniform Resource Locator 
URN Uniform Resource Name 
USDE Undesigned Signal Data 
Emanations 

UUCP UNIX to UNIX Copy 
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VAN Value Added Network 
VPN Virtual Private Network 
V Model Advanced Development Model 
VMS Virtual Memory System 
VPN Virtual Private Network 
VST VINSON Subscriber T erminal 
VTT VINSON Trunk Terminal 

W3 World Wide Web (WWW) 

W3C World Wide Web Consortium 


WIPO World Intellectual Property 
Organization 

WWW World Wide Web 

XDM/X Model Experimental 
Development Model/Exploratory 
Development Model 
XDR External Data Representation 

YP Yellow Pages 
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T his list contains select security-related Internet Request for Comments 
(RFCs) arranged in increasing order of RFC number. The RFC citations 
given below contain the information necessary for a reader to identify, at 
a quick glance, specific details of an RFC. The reader may use this information 
to further examine an RFC. The RFCs may be obtained in a number of ways: 
using HTTP, FTP, or e-mail from the IETF Web site at 

http:/ /www.ietf.org 

In addition, there are many mirror sites from which RFCs can be obtained. 
RFC citations appear in the following format: 

■ Author(s), RFC #: Title of RFC. Date of Issue, Number of Pages, [Status: sss] 
[Obsoletes RFC #]. 

Annotation. 

Key to citations: # is the RFC number. Obsoletes RFC # refers to other RFCs 
that this one replaces; the Status field 555 gives the document’s current status. 

Many RFCs are obsoleted by new RFCs, this list provides only the new 
RFC and identifies the most recent RFC it obsoletes. 



Annotated List of Security-Related RFCs 


■ D.L. Mills, RFC 1004: A Distributed-Protocol Authentication Scheme, April 
1987, 8 p. [Status: Experimental], 

This RFC discusses authentication problems in the Internet and proposes mediated access- 
control and authentication procedures as solution to these problems. 

■ S. Kent, RFC 1108: Security Options for the Internet Protocol, 1991 Novem- 
ber, 17 p. [Status: Flistoric], [Obsoletes RFC 1038], 

This RFC documents the Internet options of the U.S. Department of Defense Basic Security Op- 
tion and the top-level description of the Extended Security Option for use on the Department of 
Defense common user data networks. 

■ J. Reynolds, RFC 1135: The Helminthiasis of the Internet, December 1989, 33 
p. [Status: Informational], 

This RFC provides information about the infection, infestation, decay, and compromise of the 
Internet by worms, viruses, and other forms of malicious attacks; it also contains methods to rid 
the Internet of such infestations. 

■ R. Fougner, RFC 1170: Public Key Standards and Licenses, January 1991, 2 p. 
[Status: Informational], 

This RFC contains a statement about issuing of exclusive sublicensing rights to some patents to 
Public Key Partners. 

■ C. Mills, D. Hirsh, and G. Ruth, RFC 1272: Internet accounting: background, 
November 1991, 19 p. [Status: Informational], 

This RFC provides information about the Internet Accounting Architecture including methods to 
provide semantics to measure network utilization, syntax, and data reporting. 

■ R.D. Pethia, S. Crocker, and B.Y. Fraser, RFC 1281: Guidelines for the Secure 
Operation of the Internet, November 1991, 10 p. [Status: Informational], 

This RFC provides a set of guidelines to aid in the secure operation of the Internet. 

■ B. Kaliski, RFC 1319: The MD2 Message-Digest Algorithm, April 1992, 17 p. 
[Status: Informational], 

This RFC describes the MD2 Message-Digest Algorithm. 

■ R. Rivest, RFC 1320: The MD4 Message-Digest Algorithm, April 1992, 20 p. 
[Status: Informational], 

This RFC describes the MD4 Message Digest Algorithm. 
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■ R. Rivest, RFC 1321: The MD5 Message-Digest Algorithm, April 1992, 21 p. 
[Status: Informational], 

This RFC describes the MD5 Message Digest Algorithm. 

■ B. Lloyd, W. Simpson, RFC 1334: PPP Authentication Protocols, October 

1992, 16 p. [Status: Standards Track], 

This RFC defines the Password Authentication Protocol and the Challenge-Handshake Authenti- 
cation Protocol for authentication. 

■ J. Galvin, K. McCloghrie, and J. Davin, RFC 1352: SNMP Security Protocols, 
July 1992, 41 p. [Status: Historic], 

This RFC defines the protocols to support security services like data integrity, data origin au- 
thentication, and data confidentiality in context with the SNMP specification and SNMP ad- 
ministrative model. 

■ J. Curran and A. Marine, RFC 1355: Privacy and Accuracy Issues in Network 
Information Center Databases, August 1992, 4 p. [FYI 15], [Status: Informa- 
tional], 

This RFC sets operational and administrative framework and guidelines for public Network In- 
formation Center (NIC) databases. 

■ D. Borman, RFC 1411: Telnet Authentication: Kerberos Version 4, January 

1993, 4 p. [Status: Experimental], 

This RFC describes telnet authentication using Kerberos version 4. 

■ K. Alagappan, RFC 1412: Telnet Authentication: SPX, January 1993, 4 p. 
[Status: Experimental], 

This RFC describes telnet authentication using SPX protocol. 

■ M. St. Johns, RFC 1413: Identification Protocol, February 1993, 8 p. [Status: 
Standards Track], [Obsoletes RFC 912, RFC 931], 

This RFC describes means to determine the identity of a user of a particular TCP connection. 

■ M. St. Johns and M. Rose, RFC 1414: Identification MIB, February 1993, 7 p. 
[Status: Standards Track], 

This RFC defines an MIB for use in identifying the users associated with the TCP connections. 

■ J. Linn, RFC 1421: Privacy enhancement for Internet electronic mail: 

Part I: Message encryption and authentication procedures, February 1993, 


169 



Annotated List of Security-Related RFCs 


42 p. [Status: Standards Track], [Obsoletes RFC 989, RFC 1040 and RFC 
1113], 

This RFC describes message encryption and authentication to provide PEM services for e-mail. 

■ S.T. Kent and J. Linn, RFC 1422: Privacy enhancement for Internet electronic 
mail: Part II: Certificate-based key management, February 1993, 32 p., 9 Ref. 
[Status: Standards Track], [Obsoletes RFC 1114]. 

This RFC describes certificate-based key management for e-mail transfer through the Internet. 

■ D. Balenson, RFC 1423: Privacy enhancement for Internet electronic mail: Part 
III: Algorithms, modes, and identifiers, February 1993, 14 p., 14 Ref. [Status: 
Standards Track], [Obsoletes RFC 1115]. 

This RFC deals with cryptographic algorithms, modes, and identifiers for Privacy Enhanced 
Mail (PEM) within the context of the Internet. 

■ B. Kaliski, RFC 1424: Privacy Enhancement for Internet Electronic Mail: Part 
IV: Key Certification and Related Services, February 1993, 9 p., 3 Ref. [Status: 
Standards Track]. 

This RFC discusses key certification, certificate revocation list storage, and CRL retrieval for PEM. 

■ J. Galvin and K. McCloghrie, RFC 1446: Security Protocols for version 2 of 
the Simple Network Management Protocol (SNMPv2), April 1993, 51 p. 
[Status: Elistoric]. 

This RFC discuses Security Protocols for version 2 of the Simple Network Management Protocol. 

■ D. Eastlake, RFC 1455: Physical Link Security Type of Service, May 1993, 

6 p. [Status: Experimental]. 

This RFC documents defines a Physical Link Security Type of Service experimental protocol. It 
adds to the types of services described in RFC 1349. 

■ R. Housley, RFC 1457: Security Label Framework for the Internet, May 1993, 
14 p. [Status: Informational]. 

This RFC presents a security-labeling framework for the Internet. 

■ F. Kastenholz, RFC 1472: The Definitions of Managed Objects for the Secu- 
rity Protocols of the Point-to-Point Protocol, June 1993, 12 p. [Status: Stan- 
dards Track]. 

This RFC describes, for point-to-point protocols, the details of managed objects for security pro- 
tocols management on subnetwork interfaces. 
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■ C. Finseth, RFC 1492: An Access Control Protocol, Sometimes Called 
TACACS, July 1993, 21 p. [Status: Informational], 

This RFC describes an access control protocol, TACACS. 

■ C. Kaufman, RFC 1507: DASS: Distributed Authentication Security Service, 
September 1993, 119 p. [Status: Experimental], 

This RFC describes DASS that provides authentication services in a distributed environment to 
offer greater security and flexibility. 

■ J. Kohl and C. Neumann, RFC 1510: The Kerberos Network Authentication 
Service (V5), September 1993, 112 p. [Status: Standards Track], 

This RFC describes the underlying concept and model of the Kerberos Network Authentication 
System and specifies version 5 of Kerberos protocol. 

■ J. Linn, RFC 1511: Common Authentication Technology Overview, September 

1993, 2 p. [Status: Informational], 

This RFC gives an overview of current authentication technology and discusses related service 
interfaces as well as protocols. 

■ E. Gavron, RFC 1535: A Security Problem and Proposed Correction with 
Widely Deployed DNS Software, October 1993, 5 p. [Status: Informational], 

This RFC discusses errors and flaw in some current distributed name resolver clients and sug- 
gests corrections using DNS. 

■ R. Braden, D. Clark, S. Crocker, and C. Huitema, RFC 1636: Report of IAB 
Workshop on Security in the Internet Architecture (February 8—10, 1994), 

June 1994, 52 p., 0 Ref. [Status: Informational], 

This RFC documents Internet architecture workshop report on security issues in the Internet ar- 
chitecture. The workshop was held on February 8-10, 1 994 at USC Information Sciences In- 
stitute. 

■ N. Flaller and R. Atkinson, RFC 1704: On Internet Authentication, October 

1994, 17 p„ 35 Ref. [Status: Informational], 

This RFC discusses various authentication technologies and suggests the type of authentication 
suitable for use in protocols and applications on the Internet. 

■ R. Flidden, RFC 1710: Simple Internet Protocol Plus White Paper, October 
1994, 23 p„ 17 Ref. [Status: Informational], 

This RFC describes the Simple Internet Protocol plus ( SIPP), which is considered to be the next 
version of Internet Protocol by IETF. 
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■ J. Myers, RFC 1731: IMAP4 Authentication Mechanisms, December 1994, 

6 p. [Status: Standards Track]. 

This RFC describes identification and authentication mechanisms for IMAP4 protocol. It in- 
cludes authentication of a user to IMAP4 server and mechanisms to provide secure interac- 
tions. 

■ J. Myers, RFC 1734: POP3 AUTHentication command, December 1994, 5 p. 
[Status: Standards Track]. 

This RFC describes the optional POP3 AUTH command for authentication to the server and 
optional negotiation of protection mechanism for interaction between client and server. 

■ D. Eastlake, 3rd, S. Crocker, and J. Schiller, RFC 1750: Randomness Recom- 
mendations for Security, December 1994, 25 p. [Status: Informational]. 

Many passwords, cryptographic security keys, and similar security objects use items that re- 
quire random numbers. This RFC describes the problems associated with using traditional 
pseudo random number generating techniques to generate random numbers that are used in 
these items. 

■ D. McDonald, RFC 1751: A Convention for Human-Readable 128-bit Keys, 
December 1994, 15 p. [Status: Informational]. 

This RFC provides a convention for 128-bit cryptographic keys that makes it easier for humans 
to read and remember these keys. 

■ N. Haller, RFC 1760: The S/KEY One-Time Password System, February 
1995, 12 p. [Status: Informational]. 

This RFC describes Bellcore's S/KEY* One-Time Password system that provides protection 
against passive attacks on authentication subsystem. 

■ Rubin, RFC 1805: Location-Independent Data/Software Integrity Protocol, 
June 1995, 6 p. [Status: Informational]. 

This RFC describes a protocol to add integrity assurance to software or data that may be dis- 
tributed across the Internet with the help of a trusted third party. 

■ H. Danisch RFC 1824: The Exponential Security System TESS: An Identity- 
Based Cryptographic Protocol for Authenticated Key-Exchange, August 1995, 
21 p., 14 Ref. [Status: Informational]. 

This RFC describes the details of identity-based systems for the secure authenticated exchange 
and distribution of cryptographic keys and generation of signatures. 
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■ P. Metzger, W. Simpson, RFC 1828: IP Authentication using Keyed MD5, 
August 1995, 5 p. [Status: Standards Track], 

This RFC describes the use of MD5 algorithm in IP Authentication Header to provide integrity 
and authentication for IP datagrams. 

■ P. Karn, P. Metzger, W. Simpson, RFC 1829: The ESP DES-CBC Transform, 
August 1995, 10 p, [Status: Standards Track], 

This RFC describes the use of DES-CBC security transform to provide confidentiality for IP data- 
grams using IP Encapsulating Security Payload (ESP). 

■ J. Galvin, S. Murphy, S. Crocker, N. Freed, RFC 1847: Security Multiparts for 
MIME: Multipart/Signed and Multipart/Encrypted, October 1995, 11 p.- 
[Status: Standards Track], 

This RFC describes how security services provided by other protocols may be applied to the 
MIME body parts by defining signed and encrypted subtypes of the MIME multipart content 
type. This results in security for both single and multipart messages. 

■ S. Crocker, N. Freed, J. Galvin, S. Murphy, RFC 1848: MIME Object Security 
Services, October 1995, 48 p. [Status: Standards Track], 

This RFC describes MIME Object Security Services (MOSS) between the sender and receiver 
at the application layer. This protocol applies digital signature (using public key cryptography) 
and encryption services (using symmetric key) to MIME objects. This protocol provides mecha- 
nisms to support many public key management schemes. 

■ P. Karn, P. Metzger, W. Simpson, RFC 1851: The ESP Triple DES Trans- 
form, September 1995, lip. [Status: Experimental], 

This RFC describes the use of triple DES-CBC algorithm to provide IP datagram payload pro- 
tection under ESP. 

■ P. Metzger, W. Simpson, RFC 1852: IP Authentication using Keyed SEIA, 
September 1995, 6 p. [Status: Experimental], 

This RFC describes Authentication Header use of keyed Secure Hash Algorithms (SHA). 

■ W. Simpson, RFC 1853: IP in IP Tunneling, October 1995, 8 p., 9 Ref. 
[Status: Informational], 

This document discusses techniques, such as those used in Amateur Packet Radio network to 
build a large mobile network, for connecting IP Protocol/Payload number 4 Encapsulation to 
IP Security and other protocols. The techniques are valid when the source and the destination 
application may have different capabilities and policies. 
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■ G. Ziemba, D. Reed, P.Traina, RFC 1858: Security Considerations for IP Frag- 
ment Filtering, October 1995, 10 p. [Status: Informational], 

This RFC describes two methods of attacks that use IP fragmentation to disguise TCP packets 
from IP filters and presents methods to prevent these attacks. 

■ J. Myers, M. Rose, RFC 1864: The Content-MD5 Header Field, October 

1995, 4 p, 3 Ref. [Status: Standards Track], [Obsoletes RFC 1544], 

This RFC specifies how the MD5 algorithm may be used as an integrity check for MIME mail 
by using an optional header field, Content-MD5, which can be used as a message integrity 
check (MIC], This MIC can be used to verify that the data sent and the received decoded data 
are the same. 

■ N. Berge, RFC 1875: UNINETT PCA Policy Statements, December 1995, 10 
p. [Status: Informational], 

This RFC describes the policy statements submitted by the UNINETTPCA. 

■ G. Waters, Editor, RFC 1910: User-based Security Model for SNMPv2, Feb- 
ruary 1996, 44 p. [Status: Experimental], 

This RFC describes a User-based Security Model for SNMPv2. This model provides mecha- 
nisms to achieve SNMP administrative-framework-defined level of security for protocol interac- 
tions. 

■ M. Leech et al„ RFC 1928: SOCKS Protocol Version 5, March 1996, 9 p. 
[Status: Standards Track], 

This RFC describes a SOCKS Protocol Version 5 that extends the SOCKS Protocol version 4 to 
include UDP, IPv6 addresses, and provision of strong authentication schemes. 

■ M. Leech, RFC 1929: Username/Password Authentication for SOCKS V5, 
March 1996, 2 p. [Status: Standards Track], 

This RFC describes a protocol for username/password authentication in the initial socks con- 
nection setup for SOCKS Version 5. 

■ S. Bellovin, RFC 1948: Defending Against Sequence Number Attacks, May 

1996, 6 p. [Status: Informational], 

This RFC describes a modification to the existing TCP implementations that should be useful 
against IP spoofing attacks. 

■ A. Ballardie, RFC 1949: Scalable Multicast Key Distribution, May 1996, 18 p. 
[Status: Experimental], 
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This RFC describes how the Core Based Tree (CBT) multicast protocol, which provides explicit 
mechanisms for security, for example its mechanisms for secure joining of CBT group tree can 
be used to provide a scalable solution to the multicast key distribution problem. 

■ P. McMahon, RFC 1961: GSS-API Authentication Method for SOCKS Ver- 
sion 5, June 1996, 9 p. [Status: Standards Track], 

This RFC specifies the SOCKS V5 GSS-API authentication protocol for initial SOCKS connec- 
tion. It also discusses how a GSS-API may be used to provide integrity, authentication, and 
optional confidentiality under SOCKS. 

■ J. Linn, RFC 1964: The Kerberos Version 5 GSS-API Mechanism, June 1996, 
20 p. [Status: Standards Track], 

This RFC describes issues such as elements of protocols and procedures for interoperability for 
implementing GSS-API peers on top of Kerberos Version 5 . 

■ G. Meyer, RFC 1968: The PPP Encryption Control Protocol (ECP), June 
1996, lip. [Status: Standards Track], 

This RFC discusses Encryption Control Protocol (ECP) and negotiation of encryption algo- 
rithm(s) over PPP link after a connection has been established. Note that different method of 
encryption may be negotiated in each direction of the link for considerations, such as speed, 
cost, memory, etc. 

■ K. Sklower, RFC 1969: The PPP DES Encryption Protocol (DESE), 

G. Meyer, June 1996, 10 p. [Status: Informational], 

This RFC describes the methods for encryption of PPP encapsulated packets using DES. 

■ IAB and IESG, RFC 1984: IAB and IESG Statement on Cryptographic Tech- 
nology and the Internet, August 1996, 5 p. [Status: Informational], 

This RFC contains a statement by IAB and IESG to encourage policies by governments to pro- 
vide access to uniform strong cryptographic technology for all Internet users in all countries. 

■ D. Atkins, W. Stallings, and P. Zimmermann, RFC 1991: PGP Message Ex- 
change Formats, August 1996, 21 p. [Status: Informational], 

This RFC describes the PGP v 2.x message exchange formats. It describes the format of mes- 
sages that have been encrypted and/or signed with PGP. 

■ M. Elkins, RFC 2015: MIME Security with Pretty Good Privacy (PGP), 
October 1996, 8 p. [Status: Standards Track], 

This RFC describes the ways to use PGP to provide privacy and authentication using MIME. 
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■ C. Adams, RFC 2025: The Simple Public-Key GSS-API Mechanism (SPKM), 
October 1996, 45 p. [Status: Standards Track], 

This RFC describes mechanisms to be used by peer protocols, who implement a GSS-API using 
a Simple Public-key mechanism instead of using a symmetric key infrastructure. 

■ R. Baldwin, R. Rivest, RFC 2040: The RC5, RC5-CBC, RC5-CBC-Pad, and 
RC5-CTS Algorithms, October 1996, 29 p. [Status: Informational], 

This RFC describes four ciphers, the RC5, RC5-CBC, RC5-CBC-Pad, and RC5-CTS with clarity 
and enough details to ensure interoperability between different implementations. 

■ C. Rigney, A. Rubens, W. Simpson, S. Willens, RFC 2058: Remote Authenti- 
cation Dial In User Service (RADIUS), January 1997, 64 p. [Status: Standards 
Track], 

This RFC describes Remote Authentication Dial In User Service (RADIUS) Protocol. The details 
of authentication, authorization, and configuration information of connection between a Net- 
work Access Server as a client and a RADIUS Server are given. 

■ C. Rigney, RFC 2059: RADIUS Accounting, January 1997, 25 p. [Status: 
Informational] . 

This RFC describes delivery of accounting information in a RADIUS Protocol. 

■ F. Baker, R. Atkinson, RFC 2082: RIP-2 MD5 Authentication, January 1997, 
12 p. [Status: Standards Track], 

This RFC proposes that RIP-2 use keyed MD5 as a standard authentication algorithm but the 
authentication mechanism of RIP-2 be kept as algorithm independent. 

■ G. Bossert, S. Cooper, W. Drummond, RFC 2084: Considerations for Web 
Transaction Security, January 1997, 6 p. [Status: Informational], 

This RFC discusses Web transaction security. It contains details of security services such as 
confidentiality, integrity, user authentication, and authentication of servers/services as exten- 
sions to HTTP or as separate protocol on top of HTTP. 

■ M. Oehler, R. Glenn, RFC 2085: F1MAC-MD5 IP Authentication with Re- 
play, Prevention, February 1997, 6 p. [Status: Standards Track], 

This RFC describes mechanisms to prevent replay attacks using keyed-MD5 transform based 
on HMAC-MD5 along with IP Authentication Header. 

■ J. Myers, RFC 2086: IMAP4 ACL extension, January 1997, 8 p. [Status: Stan- 
dards Track], 
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This RFC describes the ACL extension of the IMAP4 that allows manipulation of an access con- 
trol list. 

■ H. Harney, C. Muckenhirn, RFC 2093: Group Key Management Protocol 
(GKMP) Specification, July 1997, 23 p. [Status: Experimental]. 

This RFC proposes Group Key Management Protocol (GKMP) that cooperatively creates keys 
between more than two protocol entities within a group and distributes grouped symmetric 
keys among communicating peers on the Internet. 

■ H. Harney, C. Muckenhirn, RFC 2094: Group Key Management Protocol 
(GKMP) Architecture, July 1997, 22 p. [Status: Experimental]. 

This RFC describes architecture for managing grouped cryptographic keys among peer proto- 
cols for multicast communication. 

■ H. Krawczyk, M. Bellare, R. Canetti, RFC 2104: HMAC: Keyed-Hashing for 
Message Authentication, February 1997, lip. [Status: Informational]. 

This RFC describes a protocol HMAC: Keyed-Hashing for Message Authentication for mes- 
sage authentication which is a MAC mechanism based on cryptographic hashing functions. 

■ C. Adams, RFC 2144: The CAST-128 Encryption Algorithm, May 1997, 

15 p. [Status: Informational]. 

This RFC describes a DES like Substitution-Permutation Network (SPN) cryptosystem, CAST- 
128 encryption algorithm. 

■ S. Murphy, M. Badger, B. Wellington, RFC 2154: OSPF with Digital Signa- 
tures, June 1997, 29 p. [Status: Experimental]. 

This RFC describes extensions to OSPF protocol. These extensions add features such as digital 
signatures to Link State Data and certification for router data. The RFC also lists LSA process- 
ing, key management in addition to details of transition from OSPF v2. 

■ Gwinn, RFC 2179: Network Security For Trade Shows, July 1997, 10 p. 
[Status: Informational]. 

This RFC is a set of guidelines to assist vendors and participants in trade shows for protection 
against network and system attacks. 

■ B. Fraser, RFC 2196: Site Security Handbook Editor, September 1997, 75 p. 
[Status: Informational], [Obsoletes: 1244]. 

This RFC contains guidelines and recommendations to develop policies and procedures for se- 
curity of sites and systems that are connected to the Internet. 
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■ P. Cheng, R. Glenn, RFC 2202: Test Cases for HMAC-MD5 and HMAC- 
SHA-1, September 1997, 9 p. [Status: Informational], 

This RFC provides two sets of test cases and the corresponding results to be used as confor- 
mance tests for HMAC-MD5 and HMAC-SHA- 1 implementations. 

■ M. Eisler, A. Chiu, L. Ling, RFC 2203: RPCSEC_GSS Protocol Specification, 
September 1997, 23 p. [Status: Standards Track], 

This RFC describes RPCSEC_GSS security protocol that allows RPC protocols to access the 
GSS-API. 

■ J. Myers, RFC 2222: Simple Authentication and Security Layer (SASL), Octo- 
ber 1997, 27 p. [Status: Standards Track], 

This RFC describes a procedure to add authentication to connection-based protocols. If negoti- 
ated it adds a new security layer between the protocol and the connection. 

■ M. Horowitz, S. Lunt, RFC 2228: FTP Security Extensions, October 1997, 

27 p. [Status: Standards Track], 

This RFC provides authentication , integrity, and confidentiality as security extensions to the FTP 
protocol and introduces new optional commands as well as new class of reply types for pro- 
tected replies. 

■ R. Atkinson, RFC 2230: Key Exchange Delegation Record for the DNS, 
November 1997, lip. [Status: Informational], 

This RFC describes the syntax of key exchange record and methods to delegate key exchange 
services to different nodes through secure DNS. 

■ C. Newman, RFC 2245: Anonymous SASL Mechanism, November 1997, 5 p. 
[Status: Standards Track], 

This RFC describes anonymous access by a client of a server within SASL framework. The RFC 
includes a grammar and an example access scenario. 

■ P. Ferguson, D. Senie, RFC 2267: Network Ingress Filtering: Defeating Denial 
of Service Attacks which employ IP Source Address Spoofing, January 1998, 

10 p. [Status: Informational], 

This RFC discusses a method for using traffic filtering to allow valid source IP addresses from 
input links to routers to prevent DoS attacks. 

■ R. Rivest, RFC 2268: A Description of the RC2(r) Encryption Algorithm, 
March 1998, lip. [Status: Informational], 
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This RFC describes a secret key block encryption algorithm RC2 as a proposed replacement 
for DES. The algorithm has 64-bit input and 64-bit output blocks and a key size of up to 128 
bytes. 

■ U. Blumenthal, B. Wijnen, RFC 2274: User-based Security Model (USM) for 
version 3 of the Simple Network Management Protocol (SNMPv3), January 
1998, 76 p. [Status: Standards Track], [Obsoletes: 2264]. 

This RFC describes the user-based security model for SNMP which includes procedure for pro- 
viding SNMP message-level security and an MIB for remote management. 

■ B. Wijnen, R. Presuhn, K. McCloghrie, RFC 2275: View-based Access Control 
Model (VACM) for the Simple Network Management Protocol (SNMP) Jan- 
uary 1998, 36 p. [Status: Proposed Standard], [Obsoletes: 2265]. 

This RFC describes the View-based Access Control Model for the SNMP architecture, which 
include procedures for controlling access to management information and an MIB for remote 
management. 

■ L. Blunk, J. Vollbrecht, RFC 2284: PPP Extensible Authentication Protocol 
(EAP), March 1998, 15 p. [Status: Proposed Standard]. 

This RFC describes the PPP Extensible Authentication Protocol (EAP) to authenticate multi- 
protocol datagrams over point-to-point links. 

■ J. Kapp, RFC 2286: Test Cases for HMAC-RIPEMD 1 60 and HMAC- 
RIPEMD128, February 1998, 7 p. [Status: Informational]. 

This RFC provides two sets of test cases and the corresponding results to be used as confor- 
mance tests for HMAC-RIPEMD 1 60 and HMAC-RIPEMD 1 28 implementations. 

■ N. Flaller, C. Metz, P. Nesser, M. Straw, RFC 2289: A One-Time Password 
System, February 1998, 25 p. [Status: Draft Standard], [Obsoletes: 1938]. 

This RFC describes an authentication method that uses a secret pass-phrase from a user to gen- 
erate a sequence of one-time passwords. This method is not vulnerable to replay attacks be- 
cause the secret pass-phrase does not cross the network for authentication. 

■ S. Dusse, P. Hoffman, B. Ramsdell, L. Lundblade, L. Repka, RFC 2311: 
S/MIME Version 2 Message Specification, March 1998, 37 p. [Status: 
Informational] . 

This RFC describes specifications and protocols for adding cryptographic signature and en- 
cryption services to MIME messages. 
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■ S. Dusse, P. Hoffman, B. Ramsdell, J. Weinstein, RFC 2312: S/MIME Ver- 
sion 2 Certificate Handling, March 1998, 20 p. [Status: Informational], 

This RFC describes the procedures used by S/MIME to manage certificates. 

■ B. Kaliski, RFC 2315: PKCS #7: Cryptographic Message Syntax Version 1.5, 
March 1998, 32 p. [Status: Informational]. 

This RFC describes syntax for data that may need to be encrypted such as in digital signatures 
and digital envelops. 

■ S. Bellovin, RFC 2316: Report of the IAB Security Architecture Workshop, 
April 1998, 9 p. [Status: Informational]. 

This RFC contains a report of the IAB security architecture workshop that was held with goals 
to define security architecture for the Internet and identify current areas of strength, weakness 
and to provide guidance. 

■ N. Brownlee, E. Guttman, RFC 2350: Expectations for Computer Security 
Incident Response, June 1998, 38 p. [Status: Best Current Practice]. 

This RFC outlines expectations and framework for presenting the important subjects related to 
incident response from Computer Security Incident Response Teams (CSIRTs). It also provides 
formal templates and completed examples of information for presenting reports to users. 

■ G. Montenegro, V. Gupta, RFC 2356: Sun’s SKIP Firewall Traversal for 
Mobile IP, June 1998, 24 p. [Status: Informational]. 

This RFC describes traversal of mobile IP through a SKIP firewall. The document lists support 
required at firewall mobile IP home agent and mobile IP node and also methods for a mobile 
IP node to access past a SKIP firewall to construct a secure channel into its home network. 

■ D. McDonald, C. Metz, B. Phan, RFC 2367: PF_KEY Key Management API, 
Version 2, July 1998,68 p. [Status: Informational]. 

This RFC describes the PF_KEY Key Management API, Version 2 which can be used for IP Se- 
curity and other network security services. 

■ S. Kent, R. Atkinson, RFC 2401: Security Architecture for the Internet Proto- 
col, November 1998, 66 p. [Status: Standards Track], [Obsoletes: 1825]. 

This RFC describes the architecture of IPsec compliant systems including the high level descrip- 
tion of IPsec and methods to provide security services such as access control, connectionless 
integrity, data origin authentication, rejection of replayed packets, and confidentiality for traf- 
fic at the IP layer. 
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■ S. Kent, R. Atkinson, RFC 2402: IP Authentication Header, November 1998, 
22 p. [Status: Standards Track], [Obsoletes: 1826], 

This RFC describes the structure, fields, format, and other details of the IP Authentication 
Header (AH). The AH provides integrity and data origin authentication for IP datagrams. 

■ C. Madson, R. Glenn, RFC 2403: The Use of HMAC-MD5-96 within ESP 
and AH, November 1998, 7 p. [Status: Standards Track], 

This RFC describes the use of the HMAC algorithm and the MD5 algorithm, to provide the 
data origin authentication and integrity protection for IPsec ESP and IPsec AH. 

• C. Madson, R. Glenn, RFC 2404: The Use of HMAC-SHA-1-96 within ESP 
and AH, November 1998, 7 p. [Status: Standards Track], 

This RFC describes the use of the HMAC algorithm and the SHA- 1 algorithm, to provide the 
data origin authentication and integrity protection for IPsec ESP and IPsec AH. 

■ C. Madson, N. Doraswamy, RFC 2405: The ESP DES-CBC Cipher Algorithm 
With Explicit IV, November 1998, 10 p. [Status: Standards Track], 

This RFC describes the DES Cipher algorithm in Cipher Block Chaining Mode, with an explicit 
IV, to provide confidentiality under IPsec Encapsulating Security Payload. 

■ S. Kent, R. Atkinson, RFC 2406: IP Encapsulating Security Payload (ESP), 
November 1998, 22 p. [Status: Standards Track], [Obsoletes: 1827], 

This RFC describes the IP Encapsulating Security Payload (ESP) protocol that provides many 
security services such as confidentiality, data origin authentication, connectionless integrity, an 
anti-replay service for IPv4 and IPv6. 

■ D. Piper, RFC 2407: The Internet IP Security Domain of Interpretation for 
ISAKMP, November 1998, 32 p. [Status: Standards Track], 

This RFC describes the Internet IP Security DO! (IPSEC DO!) for ISAKMP. Related protocols us- 
ing ISAKMP in a DO I negotiate security associations, choose security protocols and share 
many other important functions and attributes. 

■ D. Maughan, M. Schertler, M. Schneider, J. Turner, RFC 2408: Internet Secu- 
rity Association and Key Management Protocol (ISAKMP), November 1998, 

86 p. [Status: Standards Track], 

This RFC describes the Internet Security Association and Key Management Protocol (ISAKMP) 
protocol for key management, authentication, and security association for secure communica- 
tion in an internet environment. 
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■ D. Harkins, D. Carrel, RFC 2409: The Internet Key Exchange (IKE), Novem- 
ber 1998, 41 p. [Status: Standards Track], 

This RFC describes a hybrid protocol that uses parts of Oakley and SKEME to get authenti- 
cated keying material for use with ISAKMP, IPsec ESP and AH. 

■ R. Glenn, S. Kent, RFC 2410: The NULL Encryption Algorithm and Its Use 
With IPsec, November 1998, 6 p. [Status: Standards Track], 

This RFC describes the NULL encryption algorithm, to help IPsec ESP provide authentication 
and integrity for IP datagrams. 

■ B. Kaliski, J. Staddon, RFC 2437: PKCS #1: RSA Cryptography Specifications 
Version 2.0, October 1998,39 p. [Status: Informational], [Obsoletes: 2313], 

This RFC describes specifications for implementing the RSA algorithm in computer and commu- 
nication systems. The description includes cryptographic primitives, encryption schemes, signa- 
ture schemes, and ASN. 1 syntax. 

■ C. Newman, RFC 2444: The One-Time-Password SASL Mechanism, October 
1988, 7 p. [Status: Standards Track], [Updates: 2222], 

This RFC describes the One-Time-Password (OTP) SASL mechanism to formally integrate OTP 
into SASL enabled protocols. The OTP, by giving only one-time password is useful for authenti- 
cation when a client or a server is untrusted, such as a client application in a publicly avail- 
able computer or an Internet kiosk. 

■ R. Pereira, R. Adams, RFC 2451: The ESP CBC-Mode Cipher Algorithms, 
November 1998, 14 p. [Status: Standards Track], 

This RFC describes application of CBC-mode cipher algorithms to encrypt the IP datagram 
payload for the IPsec ESP Protocol. 

■ E. Baize, D. Pinkas, RFC 2478: The Simple and Protected GSS-API Negotia- 
tion Mechanism, December 1988, 18 p. [Status: Standards Track], 

This RFC describes a simple and protected security negotiation mechanism between GSS-API 
peers. 

■ C. Adams, RFC 2479: Independent Data Unit Protection Generic Security Ser- 
vice Application Program Interface (IDUP-GSS-API), December 1988, 70 p. 
[Status: Informational], 

This RFC describes the Independent Data Unit Protection Generic Security Service Application 
Program Interface (IDUP-GSS-API), which provides data origin authentication with data integ- 
rity, data confidentiality with data integrity, and support for non-repudiation services. 
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■ N. Freed, RFC 2480: Gateways and MIME Security Multiparts, January 1999, 
6 p. [Status: Standards Track], 

This RFC discusses the problems of using MIME security multiparts and gateways to connect to 
non-MIME environments and provides specifications for gateway behavior that should solve 
these problems. 

■ P. Floffman, RFC 2487: SMTP Service Extension for Secure SMTP over TLS, 
January 1999, 8 p. [Status: Standards Track], 

This RFC describes an extension to the SMTP service to provide secure SMTP communication 
using TLS between SMTP client and server. 

■ E. Guttman, L. Leong, G. Malkin, RFC 2504: Users’ Security Flandbook, Feb- 
ruary 1999, 33 p. [Status: Informational], 

This RFC contains guidelines for users to keep their data, computers, and networks secure. 

■ C. Adams, S. Farrell, RFC 2510: Internet X.509 Public Key Infrastructure Cer- 
tificate Management Protocols, March 1999, 72 p. [Status: Standards Track], 

This RFC describes the Internet X.509 Public Key Infrastructure (PKIj Certificate Management 
Protocols. It contains details of data structures used for PKI management messages, functions 
done in PKI management, and a simple protocol for transporting PKI messages. 

■ M. Myers, C. Adams, D. Solo, D. Kemp, RFC 2511: Internet X.509 Certificate 
Request Message Format, March 1999, 25 p. [Status: Standards Track], 

This RFC describes the details and the syntax of the Internet X.509 Certificate Request Mes- 
sage Format. 

■ P. Karn, W. Simpson, RFC 2521: ICMP Security Failures Messages, March 
1999, 7 p. [Status: Experimental], 

This RFC specifies message format and error procedures for ICMP security failures messages 
when using IP security protocols. 

■ P. Karn, W. Simpson, RFC 2523: Photuris: Extended Schemes and Attributes, 
March 1999, 19 p. [Status: Experimental], 

This RFC provides Extensible Exchange Schemes and authentication attributes for implementa- 
tion of Photuris. 

■ S. Chokhani, W. Ford, RFC 2527: Internet X.509 Public Key Infrastructure 
Certificate Policy and Certification Practices Framework, March 1999, 45 p. 
[Status: Informational], 
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This RFC establishes an outline of Certificate Policy and Certification Practices in Internet 
X.509 Public Key Infrastructure. This outline contains guidelines to include topics in preparing 
certificate policy definition or a certification practice statement. 

■ R. Housley, W. Polk, RFC 2528: Internet X.509 Public Key Infrastructure 
Representation of Key Exchange Algorithm (KEA) Keys in Internet X.509 
Public Key Infrastructure Certificates, March 1999, 9 p. [Status: Informational]. 

This RFC outlines the format and semantics of fields of Key Exchange Algorithm keys in the 
Internet X.509 public key infrastructure certificates. 

■ D. Eastlake, RFC 2537: RSA/MD5 KEYs and SIGs m the Domain Name 
System (DNS), March 1999, 6 p. [Status: Standards Track]. 

This RFC describes a standard method for storage of RSA keys and RSA/MD5 based signa- 
tures in the DNS. 

■ D. Eastlake, RFC 2539: Storage of Diffie— Heilman Keys in the Domain Name 
System (DNS), March 1999, 7 p. [Status: Standards Track]. 

This RFC describes a standard method for storage of Diffie-Hellman keys in the DNS. 

■ D. Eastlake, RFC 2540: Detached Domain Name System (DNS) Information, 
March 1999, 6 p. [Status: Experimental]. 

This RFC defines a standard format for representing information retrieved such as public cryp- 
tographic keys from DNS for archival purposes. 

■ D. Eastlake, RFC 2541: DNS Security Operational Considerations, March 
1999, 7 p. [Status: Informational]. 

This RFC discusses various operational aspects of DNS security such as security of high-level 
zones; and lifetime, size, and storage for keys and signatures used for the KEY and SIG DNS 
resource records. 

■ J. Myers, RFC 2554: SMTP Service Extension for Authentication, March 
1999, lip. [Status: Standards Track]. 

This document describes an SMTP service extension [ESMTP] for authentication and an op- 
tional negotiation for a security layer for protocol interactions. 

■ M. Myers, R. Ankney, A. Malpani, S. Galperin, C. Adams, RFC 2560: X.509 
Internet Public Key Infrastructure Online Certificate Status Protocol — OCSP, 
June 1999, 23 p. [Status: Standards Track]. 

This RFC describes a protocol that helps applications determine the status of a certificate from 
a server without requiring CRLs. 
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■ U. Blumenthal, B. Wijnen, RFC 2574: User-based Security Model (USM) for 
version 3 of the Simple Network Management Protocol (SNMPv3), April 
1999, 86 p. [Status: Draft Standard], [Obsoletes 2274], 

This RFC describes the User-based Security Model (USM) for SNMP version 3, provision of 
SNMP message level security, and a MIB for remotely managing the parameters of this USM. 

■ M. Allman, S. Ostermann, RFC 2577: FTP Security Considerations, May 
1999, 8 p. [Status: Informational], 

This RFC contains suggestions for improving security of FTP servers. 

■ R. Finlayson, RFC 2588: IP Multicast and Firewalls, May 1999, 12 p. [Status: 
Informational] . 

This document discusses how firewall handles IP Multicast traffic that includes issues like sur- 
rounding the traversal of IP Multicast traffic across a firewall. 

■ C. Newman, RFC 2595: Using TLS with IMAP, POP3 and ACAP, June 
1999, 15 p. [Status: Standards Track], 

This RFC describes use of TLS with IMAP, POP 3, and ACAP for secure communication. 

■ J. Franks, P. lTallam-Baker, J. lTostetler, S. Lawrence, P. Leach, A. Luotonen, 
and L. Stewart, RFC 2617: 1TTTP Authentication: Basic and Digest Access 
Authentication, June 1999, 34 p. [Status: Draft Standard], [Obsoletes: 2069], 

This RFC describes basic and digest access authentication methods within the HTTP authentica- 
tion framework. 

■ B. Aboba, G. Zorn, RFC 2618: RADIUS Authentication Client MIB, June 
1999, 14 p. [Status: Standards Track], 

This RFC describes extensions to the Management Information Base (MIB) for use with network 
management protocols. These extensions help IP based management stations manage RADIUS 
authentication client. 

■ G. Zorn, B. Aboba, RFC 2619: RADIUS Authentication Server MIB, June 
1999, 16 p. [Status: Standards Track], 

This RFC describes extensions to the Management Information Base (MIB) for use with network 
management protocols. These extensions help IP based management stations manage RADIUS 
authentication server. 

■ B. Aboba, G. Zorn, RFC 2620: RADIUS Accounting Client MIB, June 1999, 
13 p. [Status: Informational], 
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This RFC describes extensions to the Management Information Base (MIB) for use with network 
management protocols. These extensions help IP based management stations manage RADIUS 
account client. 

■ G. Zorn, B. Aboba, RFC 2621: RADIUS Accounting Server MIB, June 1999, 
15 p. [Status: Informational], 

This RFC describes extensions to the Management Information Base (MIB) for use with network 
management protocols. These extensions help IP based management stations manage RADIUS 
account servers. 

■ M. Eisler, RFC 2623: NFS Version 2 and Version 3 Security Issues and the 
NFS Protocol’s Use of RPCSEC_GSS and Kerberos V5, June 1999, 19 p. 
[Status: Standards Track], 

This RFC describes NFS security issues, functioning of NFS over Kerberos v5 using 
RPCSEC_GSS, and how the Version 2 and Version 3 of the NFS use RPCSEC_GSS. 

■ V. Smyslov, RFC 2628: Simple Cryptographic Program Interface (Crypto 
API), June 1999, 30 p. [Status: Informational], 

This RFC describes a simple application program interface to cryptographic functions so as to 
separate cryptographic libraries from applications. 

■ E. Rescorla, A. Schiffman, RFC 2659: Security Extensions For fdTML, August 
1999, 4 p. [Status: Experimental], 

This RFC describes security extensions to HTML for embedding S-HTTP negotiation parameters 
related to cryptographic enhancements. 

■ M. Blaze, J. Feigenbaum, J. Ioannidis, A. Keromytis, RFC 2704: The 
KeyNote Trust-Management System Version 2, September 1999, 37 p. 

[Status: Informational], 

This RFC describes version 2 of the KeyNote trust-management system. 

■ P. Srisuresh, RFC 2709: Security Model with Tunnel-mode IPsec for NAT 
Domains, October 1999, lip. [Status: Informational], 

This RFC describes a security model by which IP Network Address Translator devices recog- 
nize tunnel-mode IPsec security. 

■ Medvinsky, M. Flur, RFC 2712: Addition of Kerberos Cipher Suites to Trans- 
port Layer Security (TLS), October 1999, 7 p. [Status: Standards Track], 

This document proposes addition of Kerberos Cipher Suites to the TLS protocol. 
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■ B. Aboba, D. Simon, RFC 2716: PPP EAP TLS Authentication Protocol, 
October 1999, 24 p. [Status: Experimental], 

This RFC document describes the way EAP-TLS provides TLS mechanisms within EAP. 

■ C. Villamizar, C. Alaettinoglu, D. Meyer, S. Murphy, RFC 2725: Routing Pol- 
icy System Security, December 1999, 41 p. [Status: Standards Track], 

This RFC document suggests an authentication and authorization model to assure integrity of 
data in a routing policy system. 

■ J. Zsako, RFC 2726: PGP Authentication for RIPE Database Updates, Decem- 
ber 1999, lip. [Status: Standards Track], 

This RFC suggests PGP authentication of the updates to the RIPE database. 

■ J. Linn, RFC 2743: Generic Security Service Application Program Interface 
Version 2, Update 1, January 2000, 101 p. [Status: Standards Track], [Obso- 
letes 2078], 

This RFC describes update 1 of GSS-API version 2. 

■ J. Wray, RFC 2744: Generic Security Service API Version 2: C-bindings, Janu- 
ary 2000, 101 p. [Status: Standards Track], [Obsoletes: 1509], 

This RFC describes GSS-API C language bindings. 

■ C. Alaettinoglu, C. Villamizar, R. Govindan, RFC 2754: RPS IANA Issues, 
January 2000, 7 p. [Status: Informational], 

This RFC describes RPSL objects in the IRR and lists operations required from IANA. 

■ A. Chiu, M. Eisler, B. Callaghan, RFC 2755: Security Negotiation for 
WebNFS, January 2000, 12 p. [Status: Informational], 

This RFC document describes protocol for security negotiation between WebNFS client and 
WebNFS server. 

■ R. Zuccherato, RFC 2785: Methods for Avoiding the Small-Subgroup Attacks 
on the Diffie— Heilman Key Agreement Method for S/MIME, March 2000, 
lip. [Status: Informational], 

This RFC describes methods to avoid "Small-Subgroup" attacks on the Diffie-Hellman Key 
Agreement Method for S/MIME. 

■ M. St. Johns, RFC 2786: Diffie-Hellman USM Key Management Information 
Base and Textual Convention, March 2000, 20 p. [Status: Experimental], 
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This RFC describes an experimental part of the Diffie-Hellman USM Key Management infor- 
mation Base and textual conventions to do Diffie-Hellman key exchange for use with network 
management protocols. 

■ K. Davidson, Y. Kawatsura, RFC 2802: Digital Signatures for the vl.O Internet 
Open Trading Protocol (IOTP), April 2000, 29 p. [Status: Informational], 

This RFC describes the details of the computation and verification of digital signatures in ver- 
sion 1.0 of the Internet Open Trading Protocol (IOTP). 

■ M. Nystrom, RFC 2808: The SecurlD(r) SASL Mechanism, April 2000, lip. 
[Status: Informational]. 

This RFC defines an SASL authentication mechanism using hardware token card or its software 
implementation. This RFC uses SecurlD, a hardware token card produced by RSA Securities Inc. 

■ R. Khare, S. Lawrence, RFC 2817: Upgrading to TLS Within HTTP/1.1, May 
2000,1 p. [Status: Standards Track], [Updates: 2616]. 

This RFC describes the use of Upgrade mechanism in HTTP/ 1 .1 to start Transport Layer Secu- 
rity (TLS) connection over an existing TCP connection by using the same port 80 instead of 
port 443 used for HTTPS. 

■ E. Rescorla, RFC 2818: HTTP Over TLS, May 2000, 7 p. [Status: 
Informational] . 

This RFC describes the functioning of HTPP/TLS. It describes how HTTP protocol may be used 
on top of TLS protocol to provide secure connection (s). 

■ R. Shirey, RFC 2828: Internet Security Glossary, May 2000, 212 p. [Status: 
Informational] . 

This RFC contains definition and description of Internet security terms with a purpose to pro- 
vide standardization and comprehensibility for writing in Internet security and Internet Stan- 
dards documents. 

■ M. Wahl, H. Alvestrand, J. Hodges, R. Morgan, RFC 2829: Authentication 
Methods for LDAP, May 2000, 16 p. [Status: Standards Track]. 

This RFC describes suggested and recommended seurity combinations for authentication in 
LDAP implementations. 

■ J. Hodges, R. Morgan, M. Wahl, RFC 2830: Lightweight Directory Access 
Protocol (v3): Extension for Transport Layer Security, May 2000, 12 p. 

[Status: Standards Track]. 


188 



Annotated List of Security-Related RFCs 


This RFC describes the Start Transport Layer Security in initiation of connection in an LDAP 
association. 

■ P. Leach, C. Newman, RFC 2831: Using Digest Authentication as a SASL 
Mechanism, May 2000, 27 p. [Status: Standards Track], 

This RFC describes methods to use HTTP Digest Authentication as SASL mechanism to authenti- 
cation, for example on Web, mail, LDAP, etc. 

■ J. Rabat, M. Upadhyay, RFC 2853: Generic Security Service API Version 2: 
Java Bindings, June 2000, 96 p. [Status: Standards Track], 

This RFC describes the Java bindings of GSS-API. 

■ Keromytis, N. Provos, RFC 2857: The Use of HMAC-RIPEMD- 160-96 
within ESP and ATI, June 2000, 7 p. [Status: Standards Track], 

This RFC describes how the HMAC algorithm and the RIPEMD- 1 60 algorithm together may be 
used to authenticate under IPSEC protocol. 

■ R. Bush, D. Karrenberg, M. Rosters, R. Plzak, RFC 2870: Root Name Server 
Operational Requirements, June 2000, 10 p. [Status: Best Current Practice], 
[Obsoletes: 2010], 

This RFC provides recommendations for operation of the root name servers. 

■ H. Prafullchandra, J. Schaad, RFC 2875: Diffie— Heilman Proof-of-Possession 
Algorithms, July 2000, 23 p. [Status: Standards Track], 

This RFC describes two proof-of-possession algorithms to generate an integrity check value 
using Diffie-Hellman algorithm. 

■ B. Raliski, RFC 2898: PRCS #5: Password-Based Cryptography Specification 
Version 2.0, September 2000, 34 p. [Status: Informational], 

This RFC document contains a republication of "PKCS #5: Password-Based Cryptography 
Specification Version 2.0". This RFC adds security consideration section to the above docu- 
ment. Note that PKCS series of documents are produced by the RSA Laboratories. 

■ Eastlake, RFC 2931: DNS Request and Transaction Signatures (SIG (0) s), 
September 2000, 10 p. [Status: Standards Track], [Updates: 2535], 

This RFC describes minor changes to the Domain Name System SIG Resource Records that are 
used to digitally sign DNS requests and transactions/responses. 

■ T. Ts’o, editor, J. Altman, RFC 2941: Telnet Authentication Option, Septem- 
ber 2000, 15 p. [Status: Standards Track], [Obsoletes: 1416], 
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This RFC describes a telent authentication option that can be used to decide whether to use 
encryption and forwarding of credentials for authentication, and to negotiate an authentica- 
tion type and mode among the connecting points. 

■ N. Freed, RFC 2979: Behavior of and Requirements for Internet Firewalls, 
October 2000, 7 p. [Status: Informational], 

This RFC contains guidelines to make Internet firewalls consistent and interoperable among 
various implementations. 

■ C. Adams, RFC 2984: Use of the CAST-128 Encryption Algorithm in CMS, 
October 2000, 6 p. [Status: Standards Track], 

This RFC document describes methods to incorporate CAST-128 encryption algorithm into the 
S/MIME Cryptographic Message Syntax (CMS). The CAST-128 encryption algorithm is an 
additional algorithm within CMS for symmetric content and key encryption. 

■ M. Nystrom, B. Kaliski, RFC 2985: PKCS#9: Selected Object Classes and At- 
tribute Types Version 2.0, November 2000, 42 p. [Status: Informational], 

This RFC document contains a republication of "PKCS #9: Certification Request Syntax Specifi- 
cation v2.0". This RFC adds security consideration section to the above document. Note that 
PKCS series of documents are produced by the RSA Laboratories. 

■ M. Nystrom, B. Kaliski, RFC 2986: PKCS#10: Certification Request Syntax 
Specification Version 1.7, November 2000, 14 p. [Status: Informational], [Ob- 
soletes: 2314], 

This RFC document contains a republication of "PKCS # 1 0: Certification Request Syntax Spec- 
ification vl .7". This RFC adds security consideration section to the above document. Note that 
PKCS series of documents are produced by the RSA Laboratories. 

■ FI. Ohta, M. Matsui, RFC 2994: A Description of the MISTY1 Encryption 
Algorithm, November 2000, 10 p. [Status: Informational], 

This RFC describes an encryption algorithm including key scheduling and data randomizing 
for a 1 28-bit key, 64-bit block, secret-key cryptosystem MISTY1 . The algorithm uses variable 
number of rounds for encryption. 

■ B. Wellington, RFC 3007: Secure Domain Name System (DNS) Dynamic Up- 
date, November 2000, 9 p. [Status: Standards Track], [Obsoletes: 2137], [Up- 
dates: 2535, 2136], 

This RFC describes methods that use secure communication and authentication to do DNS dy- 
namic updates securely. 
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■ B. Wellington, RFC 3008: Domain Name System Security (DNSSEC) Signing 
Authority, November 2000, 7 p. [Status: Standards Track], [Updates: 2535], 

This RFC document revises Domain Name System Security (DNSSEC) Signing Authority model 
to simplify the secure resolution process. A major change is that in a secure zone, zone data 
must sign the zone key. 

■ T. Killalea, RFC 3013: Recommended Internet Service Provider Security Ser- 
vices and Procedures, November 2000, 13 p. [Status: Best Current Practice], 

This RFC is a set of guidelines and recommendations from IETF and describe best current prac- 
tices related to security. These guidelines and recommendations are for Internet Service Provid- 
ers (ISPs) and the Internet users. 

■ G. Pall, G. Zorn, and RFC 3078: Microsoft Point-To-Point Encryption 
(MPPE) Protocol, March 2001,12 p. [Status: Informational], 

This RFC document describes the Microsoft Point-to-Point Encryption (MPPE) including, the use 
of RSA C4 algorithm to provide data confidentiality, MPPE Key Change Algorithm, and 
change of session keys. 

■ G. Zorn, RFC 3079: Deriving Keys for use with Microsoft Point-to-Point En- 
cryption (MPPE), March 2001, 21 p. [Status: Informational], 

This RFC document describes the derivation of initial MPPE session keys to encrypt PPP packets 
over point-to-point links. The session keys are changed frequently and the frequency of change 
is negotiated between the communicating parties. 

■ K. Chan, J. Seligson, D. Durham, S. Durham, S. Gai, K. McCloghrie, S. Fler- 
zog, F. Reichmeyer, R. Yavatkar, and A. Smith, RFC 3084: COPS Usage 
for Policy Provisioning (COPS-PR), March 2001, 34 p. [Status: Standards 
Track], 

This document describes the Common Open Policy Service (COPS) protocol that includes mes- 
sage formats and objects that carry the modeled policy data to support policy provisioning. It 
makes no assumption about the underlying policy data model being communicated. 

■ E. Lewis, RFC 3090: DNS Security Extension Clarification on Zone Status, 
March 2001, lip. [Status: Standards Track], 

This RFC updates sections of RFC 2535 by defining the criteria to designate a zone as a se- 
cure zone. This definition is independent of the underlying key algorithm used. 

■ R. Braden, L. Zhang, RFC 3097: RSVP Cryptographic Authentication — 
Updated Message Type Value, April 2001, 4 p. [Status: Standards Track], 
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This RFC memo suggests an updated message type value in RSVP Cryptographic Authentica- 
tion by changing the message type of the challenge and integrity response messages in RFC 
2747 . 

■ D. Eastlake 3rd, RFC 3110: RSA/SHA-1 SIGs and RSA KEYs m the Do- 
main Name System (DNS), May 2001, 7 p. [Status: Standards Track], 

This RFC defines a new DNS signature algorithm to produce RSA/SHA I SIG resource records 
and RSA KEY resource records. 
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ANSI STANDARDS 

ANSI X3. 92 

“American National Standard for Data En- 
cryption Algorithm (DEA),” American Na- 
tional Standards Institute, 1981. 

ANSI X3. 105 

“American National Standard for Informa- 
tion Systems — Data Link Encryption" Ameri- 
can National Standards Institute, 1983. 

ANSI X3. 106 

“American National Standard for Informa- 
tion Systems — Data Encryption Algorithm- 
Modes of Operation” American National 
Standards Institute, 1983. 

ANSI X9. 17 

“American National Standard for Financial 
Institution Key Management (Wholesale),” 
American Bankers Association, 1985 
(Revised). 

ANSI X9. 19 

“American National Standard for Retail 
Message Authentication,” American Bankers As- 
sociation, 1985. 


ANSI X9.23 

“American National Standard for Financial 
Institution Message Encryption” American 
Bankers Association, 1988, 

ANSI X9.24 

“Draft Proposed American National Stan- 
dard for Retail Key Management,” American 
Bankers Association, 1988, 

ANSI X9.26 

“American National Standard for Financial 
Institution Sign-On Authentication for Wholesale 
Financial Transaction” American Bankers As- 
sociation, 1990 (Revised). 

ANSI X9.30 

“Working Draft: Public Key Cryptography Us- 
ing Irreversible Algorithms for the Financial Services 
Industry,” American Bankers Association, 
August 1994. 

ANSI X9.31 

“Working Draft: Piddic Key Cryptography Us- 
ing Reversible Algorithms for the Financial Services 
Industry," American Bankers Association, 
March 1993. 
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ANSI X9.8 

“American National Standard for Personal 
Information Number (PIN) Management and Se- 
curity ,” American Bankers Association, 

1982. 

ANSI X9.9 

“American National Standard for Financial 
Institution Message Authentication (Whole- 
sale),” American Bankers Association, 
1986. (Revised) 

ECMA STANDARDS 
(BLUE COVER) 

ECMA- 106 

Private Telecommunication Networks 
(PTN), Signalling Protocol at the S Refer- 
ence Point, Circuit Mode Basic Services 
(SSIG-BC), 3rd edition (December 1993). 

ECMA-1S1 

Data Compression for Information Inter- 
change, Adaptive Coding with Embedded 
Dictionary, DCLZ Algorithm (June 1991). 

ECMA-205 

Commercially Oriented Functionality Class 
for Security Evaluation (COFC) (Decem- 
ber 1993). 

ECMA-206 

Association Context Management includ- 
ing Security Context Management (Decem- 
ber 1993) 

ECMA-219 

Authentication and Priviledge Attribute Se- 
curity Application with Related Key Dis- 
tribution Functions, Parts 1, 2, and 3, 2nd 
edition (March 1996). 

ECMA-307 

Corporate Telecommunication Networks, 
Signalling Interworking between QSIG 


and H.323, Generic Functional Protocol 
for the Support of Supplementary Services 
(June 2000). 

ECMA-308 

Corporate Telecommunication Networks, 
Signalling Interworking between QSIG and 
H.323, Call Transfer Supplementary Ser- 
vices (June 2000). 

ECMA-309 

Corporate Telecommunication Networks, 
Signalling Interworking between QSIG and 
H.323, Call Diversion Supplementary Ser- 
vices (June 2000). 

FIPS STANDARDS 

FIPS PUB ZZZ 

Advanced Encryption Standard (AES). 

FIPS PUB 112 

Password Usage, 1985 May 30. 

FIPS PUB 196 

Entity Authentication Using Public Key 
Cryptography, 1997 February 18. 

FIPS PUB 46 

Data Encryption Standard (DES), January 
1997. 

FIPS PUB 46-3 

Data Encryption Standard (DES), 1999 
October 25. 

FIPS PUB 81 

DES Modes of Operation, 

FIPS PUB 113 

Computer Data Authentication. 

FIPS PUB 140-1 

Security Requirements For Cryptographic 
Modules. 
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FIPS PUB 171 

Key Management Using ANSI X9.17. 

FIPS PUB 1 80-1 

Secure Hash Standard (SHS). 

FIPS PUB 181 

Automated Password Generator (APG), 

FIPS PUB 185 

Automated Password Generator (APG). 

FIPS PUB 186 

Digital Signature Standard (DSS). 

FIPS PUB 1 86-2 

Automated Password Generator (APG). 

ISO STANDARDS 

ISO 7498-2:1989 

Information processing systems, Open Sys- 
tems Interconnection, Basic Reference 
Model, Part 2: Security Architecture. 

ISO/IEC 10164-7:1992 

Information technology, Open Systems In- 
terconnection, Systems Management: Secu- 
rity alarm reporting function. 

ISO/IEC 10164-8:1993 

Information technology, Open Systems In- 
terconnection, Systems Management: Secu- 
rity audit trail function. 

ISO/IEC DIS 10181-1 

Information technology, Open Systems In- 
terconnection, Security Frameworks for 
Open Systems: Overview. 

ISO/IEC DIS 10181-2 

Information technology, Open Systems In- 
terconnection, Security Frameworks for 
Open Systems, Part 2: Authentication 
Framework. 


ISO/IEC DIS 10181-3 

Information technology, Open Systems In- 
terconnection, Security frameworks in open 
systems, Part 3: Access control. 

ISO/IEC DIS 10181-4 

Information technology, Open Systems In- 
terconnection, Security frameworks in 
Open Systems, Part 4: Nonrepudiation. 

ISO/IEC DIS 10181-5 

Information technology, Security frame- 
works in open systems, Part 5: Confidenti- 
ality. 

ISO/IEC DIS 10181-6 

Information technology, Security frame- 
works in open systems, Part 6: Integrity. 

ISO/IEC DIS 10181-7 

Information technology, Open Systems In- 
terconnection, Security Frameworks for 
Open Systems: Security Audit Framework. 

ISO/IEC 10745:1995 

Information technology, Open Systems In- 
terconnection, Upper layers security model. 

ISO/IEC DIS 11586-1 

Information technology, Open Systems 
Interconnection, Generic Upper Layers 
Security, Part 1: Overview, Models and 
Notation. 

ISO/IEC DIS 11586-2 

Information technology, Open Systems In- 
terconnection, Generic Upper Layers Secu- 
rity, Part 2: Security Exchange Service Ele- 
ment (SESE) Service Specification. 

ISO/IEC DIS 11586-3 

Information technology, Open Systems In- 
terconnection, Generic Upper Layers Secu- 
rity, Part 3: Security Exchange Service Ele- 
ment (SESE) Protocol Specification. 
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ISO/IEC DIS 1 1 586-4 

Information technology, Open Systems In- 
terconnection, Generic Upper Layers Secu- 
rity, Part 4 : Protecting Transfer Syntax 
Specification, 

ISO/IEC DIS 11586-5 

Information technology, Open Systems In- 
terconnection, Generic Upper Layers Secu- 
rity: Security Exchange Service Element 
Protocol Implementation Conformance 
Statement (PICS) Proforma. 

ISO/IEC DIS 11586-6 

Information technology, Open Systems In- 
terconnection, Generic Upper Layers Secu- 
rity: Protecting Transfer Syntax Implemen- 
tation Conformance Statement (PICS) 
Proforma, 

ISO/IEC 9796:1991 

Information technology, Security tech- 
niques, Digital signature scheme giving 
message recovery. 

ISO/IEC 9797:1994 

Information technology, Security tech- 
niques, Data integrity mechanism using a 
cryptographic check function employing a 
block cipher algorithm. 

ISO/IEC 9798-1:1991 

Information technology, Security tech- 
niques, Entity authentication mechanisms, 
Part 1: General model. 

ISO/IEC 9798-2:1994 

Information technology, Security tech- 
niques, Entity authentication, Part 2: 
Mechanisms using symmetric encipherment 
algorithms. 

ISO/IEC 9798-3:1993 

Information technology, Security tech- 
niques, Entity authentication mechanisms, 


Part 3: Entity authentication using a public 
key algorithm. 

ISO/IEC 9798-4:1995 

Information, Security techniques, Entity 
authentication, Part 4: Mechanisms using a 
cryptographic check function. 

ISO/IEC 9979:1991 

Data cryptographic techniques, Procedures 
for the registration of cryptographic algo- 
rithms. 

ISO/IEC 10116:1991 

Information technology, Modes of opera- 
tion for an /7-bit block cipher algorithm. 

ISO/IEC 10118-1:1994 

Information technology, Security tech- 
niques, Hash-functions, Part 1: General. 

ISO/IEC 10118-2:1994 

Information technology, Security tech- 
niques, Hash-functions, Part 2: Hash- 
functions using an /x-bit block cipher 
algorithm. 

ISO/IEC DIS 1 1 770-2 

Information technology, Security tech- 
niques, Key management, Part 2: Mecha- 
nisms using symmetric techniques. 

ISO/IEC DTR 1 3335-1 

Information technology, Guidelines for the 
management of IT security, Part 1: Con- 
cepts and models for IT security. 

ISO/IEC DTR 1 3335-2 

Information technology, Guidelines for the 
management of IT security, Part 2: Plan- 
ning and managing IT security. 

ISO/IEC DTR 13335-3 

Information technology, Guidelines for the 
management of IT security, Part 3: Tech- 
niques for the management of IT security. 
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ISO/IEC DIS 14980 

Information technology, Code of practice 
for information security management. 

ISO DIS 10118a 

“Information Technology, Security Techniques: 
Hash Functions” International Organization 
for Standardization, 1989 (Draft). 

ISO DIS 10118b 

“Information Technology, Security Techniques: 
Hash Functions” International Organization 
for Standardization, April 1991 (Draft). 

ISO DIS 8730 

“Banking: Requirements for Message Authentication 
(Wholesale),” Association for Payment 
Clearing Services, London, July 1987. 

ISO DIS 8731-1 

“ Banking:-Approved Algorithms for Message Au- 
thentication , Part 1: DEA,” Association for 
Payment Clearing Services, London, 1987. 

ISO DIS 8731-2 

“Banking-Approved Algorithms for Message Au- 
thentication , Part 2: Message Authenticator 
Algorithm,” Association for Payment 
Clearing Services, London, 1987. 

ISO DIS 8732 

“ Banking: -Key Management (Wholesale),” 
Association for Payment Clearing Services, 
London, Dec 1987. 

ISO Nl 79 

“AR Fingerprint Function’’ working docu- 
ment, ISO-IEC/JTC1/SC27/WG2, In- 
ternational Organization for Standardiza- 
tion, 1992. 

ISO N98 

“Hash Functions Using a Pseudo Random Algo- 
rithm,” working document, ISO-IEC/JTC1/ 
SC27/WG2, International Organization for 
Standardization. 1992. 


ISO/IEC 10118 

“Information Technology , Security Techniques: Hash 
Functions, Part 1: General and Part 2: Hash 
Functions Using an /i-Bit Block Cipher Al- 
gorithm,” International Organization for 
Standardization, 1993. 

ISO/IEC 9796 

“Information Technology, Security Tech- 
niques: Digital Signature Scheme Giving Message 
Recovery,” International Organization for 
Standardization, Jul 1991. 

ISO/IEC 9797 

“Data Cryptographic Techniques, Data In- 
tegrity Mechanism Using a Cryptographic Check 
Function Employing a Block Cipher Algorithm," 
International Organization for Standardiza- 
tion, 1989. 

ISO/IEC JTC1/SC 21 

ISO/IEC JTC1/SC 21, Amendment 1 to 
ISO/IEC 9594—8:1995, Information Technol- 
ogy, Open Systems Interconnection, The Directory: 
Authentication Framework, AMENDMENT 1: 
Certifcate Extensions. 

ISO/IEC 8825 

ISO/IEC 8825: Information Technology-Open 
Systems Interconnection-Specification of ASN. I 
Encoding Rules, 1987 (also ITU-T X.690 
series Recommendations). 

ISO/IEC 9594-8 

ISO/IEC 9594—8: Information Technology, 
Open Systems Interconnection , The Directory , Au- 
thentication Framework, 1988 (revised 1993) 
(also ITU-T Recommendation X.509). 

ITU STANDARDS 

[X.273] 

Recommendation X.273, Information 
technology, Open Systems Interconnection, 
Network layer security protocol (9). 


199 



List of Security Standards 


[X.274] 

Recommendation X.274, Information 
technology, Telecommunication and infor- 
mation exchange between systems, trans- 
port layer security protocol (6). 

[X.736] 

Recommendation X.736, Information 
technology, Open Systems Interconnection, 
Systems management: Security alarm re- 
porting function (6). 

[X.736 SUMMARY] 

Summary of Recommendation X.736, In- 
formation technology, open systems inter- 
connection, systems management: security 
alarm reporting function (1). 

[X.740] 

Recommendation X.740, Information 
technology, Open Systems Interconnection, 
systems management: security audit trail 
function (6). 

[X.800] 

Recommendation X.800, Security architec- 
ture for Open Systems Interconnection for 
CCITT applications (6). 

[X.802] 

Recommendation X.802, Information tech- 
nology, Lower layers security model (2). 

[X.803] 

Recommendation X.803, Information 
Technology, Open Systems Interconnec- 
tion, Upper layers security model (2). 

ATM NETWORKING 
STANDARDS 

B-ICI 

Broadband Intercarrier Interface. 

P-NNI 

Public Network-to-Network Interface. 


IEEE 1363 STANDARD 

IEEE PI 363: 

Standard Specifications for Public Key 
Cryptography. 

RAINBOW SERIES 

CSC-STD-002-85 

DoD Password Management Guideline, 12 
April 1985. 

CSC-STD-004-85 

Technical Rational Behind CSC-STD- 
003—85: Computer Security Requirements, 
Guidance for Applying the DoD TCSEC 
in Specific Environments, 25 June 1985, 

NTISSAM COMPUSEC/ 1-87 

Advisory Memorandum on Office Auto- 
mation Security Guidelines. 

NCSC-TG-004 

Glossary of Computer Security Terms, 21 
October 1988. 

NCSC-TG-005 

Trusted Network Interpretation (TNI) of 
the Trusted Computer System Evaluation 
Criteria (TCSEC), [Red Book] 1987. 

NCSC-TG-009 

Computer Security Subsystem Interpreta- 
tion of the TCSEC 16 September 1988. 

NCSC-TG-010 

A Guide to Understanding Security Mod- 
eling in Trusted Systems, October 1992. 

NCSCTG-01 1 

Trusted Network Interpretation Environ- 
ments Guideline, August 1990, 

NCSC-TG-01 7 

A Guide to Understanding Identification 
and Authentication in Trusted Systems, 
September 1991. 


200 



List of Security Standards 


NCSC-TG-020-A 

Trusted UNIX Working Group (TRU- 
SIX) Rationale for Selecting Access Con- 
trol List Features for the UNIX® System, 

7 July 1989. 

NCSC-TG-021 

Trusted Database Management System In- 
terpretation of the TCSEC (TDI), April 
1991. 

NCSC-TG-022 

A Guide to Understanding Trusted Recov- 
ery in Trusted Systems, 30 December 

1991. 

NCSC-TG-023 

A Guide to Understanding Security Test- 
ing and Test Documentation in Trusted 
Systems, 

NCSC-TG-024 Vol 1 /4 

A Guide to Procurement of Trusted Sys- 
tems: An Introduction to Procurement Ini- 
tiators on Computer Security Require- 
ments, December 1992. 

NCSC-TG-024 Vol 3/4 

A Guide to Procurement of Trusted Sys- 
tems: Computer Security Contract Data 
Requirements List and Data Item Descrip- 
tion Tutorial, 28 February 1994. 

NCSC-TG-026 

A Guide to Writing the Security Features 
User’s Guide for Trusted Systems, Septem- 
ber 1991. 

NCSC-TG-027 

A Guide to Understanding Information 
System Security Officer Responsibilities 
for Automated Information Systems, May 

1992. 

NCSC-TG-028 

Assessing Controlled Access Protection, 25 
May 1992. 


OTHER NCSC 
PUBLICATIONS 

Cl Technical Report 001 

Technical Report, Computer Viruses: Pre- 
vention, Detection, and Treatment, 12 
March 1990. 

C Technical Report 79-91 

Technical Report, Integrity in Automated 
Information Systems, September 1991. 

C Technical Report 32-92 

The Design and Evaluation of INFOSEC 
systems: The Computer Security Contribu- 
tion to the Composition Discussion, June 
1992. 

C Technical Report 111-91 

Integrity-Oriented Control Objectives: 
Proposed Revisions to the TCSEC, Octo- 
ber 1991. 

NCSC Technical Report 002 

Use of the TCSEC for Complex, Evolving, 
Mulitpolicy Systems. 

NCSC Technical Report 003 

Turning Multiple Evaluated Products Into 
Trusted Systems. 

NCSC Technical Report 004 

A Guide to Procurement of Single Con- 
nected Systems, Language for RFP Specifi- 
cations and Statements of Work, An Aid 
to Procurement Initiators, Includes Com- 
plex, Evolving, and Multipolicy Systems, 

NCSC Technical Report 005 Volume 1/5 

Inference and Aggregation Issues In Secure 
Database Management Systems. 

NCSC Technical Report 005 Volume 2/5 

Entity and Referential Integrity Issues In 
Multilevel Secure Database Management. 
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NCSC Technical Report 005 Volume 3/5 

Polyinstantiation Issues In Multilevel 
Secure Database Management Systems. 

NCSC Technical Report 005 Volume 4/5 

Auditing Issues In Secure Database Man- 
agement Systems, 

NCSC Technical Report 005 Volume 5/5 

Discretionary Access Control Issues In 
High Assurance Secure Database Manage- 
ment Systems. 

PUBLIC KEY 
CRYPTOGRAPHIC 
STANDARD (PKCS) 

PKCS #1: 

RSA Encryption and Signature, 

PKCS #3: 

Diffie— Heilman Key Agreement. 

PKCS #5: 

Password-based Encryption. 

PKCS #6: 

Extended Certificate Syntax. 

PKCS #7: 

Cryptographic Message Syntax. 

PKCS #8: 

Private Key Information Syntax. 

PKCS #9: 

Selected Attribute Syntaxes. 

PKCS #10: 

Certificate Request Syntax. 

PKCS #11: 

Abstract Token Interface API. 

OTHER DOCUMENTS 

CCEB 

Common Criteria for Information Technology Secu- 
rity Evaluation : Version 2.0. May 1998. 


CEC91 

Commission of the European Communi- 
ties. Information Technology Security Evaluation 
Criteria (ITSEC), Version 1.2, 1991. 

CEC93 

Commission of the European Communi- 
ties. Information Technology Security Evaluation 
Manual fTSEMf 1993. 

cssc 

Canadian System Security Centre, The Ca- 
nadian Trusted Computer Product Evaluation Cri- 
teria, Version 3.0e, 1993. 

DoD 5200.28-STD 

Department of Defense (DoD) Trusted Computer 
System Evaluation Criteria (TCSEC '), [Orange 
Book], DoD 5200.28-STD, December 
1985. 

DoD 5200.28-STD 

U.S. Department of Defense. DoD Trusted 
Computer System Evaluation Criteria , ((Orange 
Book) DoD 5200.28-STD, 1985. 

DoD 5220.22-M 

U.S. Department of Defense. Industrial Secu- 
rity Manual for Safeguarding Classified Informa- 
tion. , DoD 5220.22-M, June 1987. 

CFR 120-130 

Department of State, “ International Traffic in 
Arms Regulations (IT AR), ” 22 CFR HO- 
MO, Office of Munitions Control, Nov 
1989. 

DoT85 

Department of the Treasury, "Criteria and 
Procedures for Testing Evaluating , and Certifying 
Message Authentication Decisions for Federal E.F.T 
Use)’ Department of Treasury, 1 May 
1985. 
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D 0 T 86 

Department of the T reasury, “Electronic Funds 
and Securities Transfer Policy , Message Authentication 
and Enhanced Security ” Order No. 106—09, 
Department of Treasury, 2 Oct 1986. 

NIST92 

National Institute of Standards and Tech- 
nology & National Security Agency. Federal 
Criteria for Information Technology Security , Ver- 
sion 1.0, 1992. 

SET Book 3 

SET, Secure Electronic Transaction Specif cation 


Booh 3: Formal Protocol Definition, Version 1.0, 
May 31, 1997. 

SHS92 

“Proposed Federal Information Processing 
Standard for Secure Hash Standard,” Fed- 
eral Register , v.57, n. 21,31 Jan 1992, pp, 
3747-3749. 

TRU87 X800 

Secure Architecture for Open Systems Interconnec- 
tion for CCITT Applications ( Recommendation 
X.800), CCITT, Geneva, 1991. 
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T he following collection of World Wide Web resources may interest the 
reader. I have consulted many of these sites while searching for the most 
appropriate and up-to-date description of terms, and if a site seemed to 
me to have potential value for the reader, I have included it in this list. The 
sites are of diverse origin, from government, nonprofit organizations, and com- 
mercial organizations, and they include both U.S. and international sites. 

This list is by no means complete; the Web is a vast and dynamic place, 
and any list will be obsolete in a short time. However, I believe this list has 
staying power because many sites in the list are stable and generic, such as 
www.cert.org, www.ietf.org, www.ieee.org. These URLs will not change fre- 
quently, and this list of resources is quite comprehensive. 

This listing is organized as follows: it is sorted alphabetically, and the name 
of the resource is given in bold letters, followed by a brief description of the 
contents of the site. Following these is the URL of the site. These URLs were 
active at the date of this writing. 



List of Annotated Web Resources 


■ A brief history of codes and ciphers used in the Second World War 

This Web site was created by Tony Sales, and it describes the history, science, and engineering 
of cryptanalysis in World War II. It contains links to Enigma, original World War II docu- 
ments such as the German manual for the naval use of Enigma, technical lectures by Tony 
Sales, links related to Bletchley Park, including the Bletchley Park Cryptographic Dictionary, 
and many other sources of historical interest. 

http: / / www.codesandciphers.org.uk / 

■ ACM special interest group on security audit and control 

This is the home page of the special interest group on security audit and control of the 
Association of Computing Machinery (ACM). ACM is the oldest and perhaps most widely 
known computer science professional organization. The W eb page of the special interest group 
is home to many security resources. 

http: / / www.acm.org/ sigsac / #top 

■ Advanced Computing Systems Association (USENIX) 

This Web site of USENIX (Advanced Computing Systems Association) has links to various 
sources of information and conferences. 

http: / / www.usenix.org/ 

■ American National Standards Institute 

This is the official Web site of the American National Standards Institute and contains access 
to information on the ANSI Federation and the latest national and international standards and 
related activities. 

http: / / www.ansi.org/ 

■ An Introduction to Secure Socket Layer (SSL) 

This Web site, maintained by Netscape Corporation, contains introduction, resources, and 
documentation related to the Secure Sockets Layer (SSL) protocol, SSL is used on the World 
Wide Web for authenticated and encrypted communication between clients and servers. 

http: / / developer.netscape.com / docs / manuals / security / sslin / index.htm 

■ Canadian Communications Security Establishment 

This Web site is maintained by the Communications Security Establishment (CSE) of the 
Canadian government with a purpose to provide information technology security (ITS) solu- 
tions to the government of Canada. It has links to Canadian Common Criteria Scheme, in- 
formation technology educational resources, and various other information. 

http:/ /www.cse.dnd.ca/ 
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■ Cipher, An IEEE electronic newsletter of the Technical Committee on Security and 
Privacy (IEEE/CS) 

This Web site contains Cipher, IEEE’s electronic newsletter of the Technical Committee on 
Security and Privacy (IEEE/ CS) and provides a past-issue archive, cipher book reviews, cipher 
news briefs, a cipher reader’s guide to literature, and other information. 

http: / / www.ieee-security.org/ cipher.html 

■ Common Criteria for IT Security Evaluation (CC) 

This is NIST’s Web site on the Common Criteria Project for IT security evaluation (CC) 
and contains various CC-related documents. It also contains links to “official” CC Project 
Web site at http:// www.commoncriteria.org and the NIAP Web site at http:// niap.nist.gov. 

http: / / csrc.ncsl.nist.gov / cc 

■ Common Data Security Architecture 

This Web site is maintained by Intel and has information about Intel Common Data Security 
Architecture (CDSA) including downloads, documentation, FAQs, technical information, 
adopters, and specifications. 

http: / / www.intel.com /ial/ security / index.htm 

■ Computer Emergency Response Team (CERT), Australia 

This is the official site of Australian CERT. Although regional in nature, it contains a list of 
downloadable security-related software and links to many technical reports, security contacts, 
and other valuable information, 

http:/ /www.auscert.org.au/ 

■ Computer Emergency Response Team (CERT), Coordination Center 

This is the official Web site of CERT. In addition to containing security advisories, alerts, 
and incident notes, this site is a good source of technical papers and information about Internet 
security. It also contains CERT statistics, current intruder trends, and many reports issued by 
CERT staff related to security. A very good site, I highly recommend it for regular browsing. 

http:/ /www.cert.org/ 

■ Computer Society Institute 

This Web site is maintained by the Computer Security Institute. It has links to security archives, 
technical reports, news, and a host of other resources. 

http: / / www.gocsi.com / 

■ Cyptography organization 

This Web site is maintained by Michael Paul Johnson and contains North American Cryptog- 
raphy archives. In addition, it contains links to various cryptographic resources and sites. 

http:/ /cryptography.org/ 
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■ Cryptographic policies of countries 

Crypto law survey by Bert-Jaap Koops. This page contains reports that analyze cryptographic 
policies of different countries. An excellent and information-filled report with good analysis. 

http: / / cwis.kub.nl/ — fir w/ people /koops /lawsurvy.htm 

■ Draft of UNCITRAL Model Law for electronic commerce: issues and solutions 

An article that explains proposal Draft UNCITRAL Model Law for electronic commerce and 
deals with the legal issues related to the law. Written by Richard Hill and Ian Walden, this 
article was published in the March 1996 issue of The Computer Lawyer. 

http: / / www.batnet.com / oikoumene / arbunc.html 

■ Electronic Frontier Foundation 

This Web site is maintained by the Electronic Frontier Foundation (EFF), a nonprofit, non- 
partisan organization with a purpose to protect fundamental civil liberties, including privacy 
and freedom of expression in the arena of computers and the Internet. This site contains links 
to some excellent resources and discussions. 

http: / / www.eff.org/ 

■ European Committee for Standardization 

The Web site of the European Committee for Standardization, responsible for voluntary 
technical harmonization in Europe in conjunction with worldwide bodies and European part- 
ners. This body also develops procedures for mutual recognition and conformity assessment 
to standards. Contains information on where to obtain European standards. 

http: / / www.cenorm.be / 

■ Federation of American Scientists (FAS) 

This Web site of the Federation of American Scientists contains papers, discussions, and 
important links to a variety of topics including military analysis, special weapons, and intelli- 
gence. 

http:/ /www.fas.org/ 

■ Forum of Incident Response and Security Teams 

This is the official Web site of FIRST and contains information about FIRST, recent events, 
conferences, contacts, and other information. 

http:/ / www.first.org/ 

■ IEEE Computer Society, Security and Privacy Section 

Maintained by IEEE computer Society, this Web site provides publications center, commu- 
nities, standards, career services center, and information about education and certifications, 

http: / / www.computer.org/ cspress / catalog9.htm#sec-priv 
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■ IEEE Computer Society Technical Committee on Security and Privacy 

This W eb site, maintained by IEEE Computer Society T echnical Committee on Security and 
Privacy (TCSP), provides links to Cipher, the TCSP electronic newsletter, upcoming confer- 
ences, TCSP contacts, and various reports of the society. 

http: / / www.ieee-security.org/index.html 

■ IEEE Standard Specifications for Public-Key Cryptography 

This is the official Web site for IEEE PI 363 (IEEE has now adopted it as a standard) home 
page maintained by IEEE and contains Standard Specifications for Public-Key Cryptography. 
The complete IEEE 1363 and other draft documents are available through this Web site. 

http: / / grouper.ieee.org/ groups / 1 3 63/ 

■ IETF Working group on Authenticated Firewall Traversal 

This Web site contains a general introduction to the IETF working group on authenticated 
firewall traversal. 

http: / / www.ietf.cnri.reston.va.us /html.charters / aft-charter.html 

■ IETF Working group on Common Authentication Technology 

This Web site contains a general introduction to the IETF working group on authentication 
technology. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / cat-charter.html 

■ IETF Working group on Intrusion Detection Exchange Format 

This Web site contains a general introduction to the IETF working group on intrusion- 
detection exchange format. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / idwg-charter.html 

■ IETF Working group on IP Security Protocol 

This Web site contains a general introduction to the IETF working group on IP security 
protocol, 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / ipsec-charter.html 

■ IETF Working group on IP Security Policy 

This Web site contains a general introduction to the IETF working group on IP security 
policy. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / ipsp-charter.html 

■ IETF Working group on IP Security Remote Access 

This Web site contains a general introduction to the IETF working group on IP security 
remote access. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / ipsra-charter.html 
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■ IETF Working group on Kerberized Internet Negotiation of Keys 

This Web site contains a general introduction to the IETF working group on kerberized 
Internet negotiation of keys. 

http: / / www.ietf.cnri.reston.va.us /htmlcharters /kink-charter.html 

■ IETF Working group on Kerberos WG 

This Web site contains a general introduction to the IETF working group on Kerberos WG. 

http: / / www.ietf.cnri.reston.va.us /htmlcharters /krb-wg-charter.html 

■ IETF Working group on Multicast Security 

This Web site contains a general introduction to the IETF working group on multicast security. 

http: / / www.ietf. cnri.reston.va.us /html. charters / msec-charter.html 

■ IETF Working group on an Open Specification for Pretty Good Privacy 

This Web site contains a general introduction to the IETF working group on an open spec- 
ification for pretty good privacy. 

http: / / www.ietf.cnri.reston.va.us /htmlcharters / openpgp-charter.html 

■ IETF Working group on One Time Password Authentication 

This Web site contains a general introduction to the IETF working group on one time 
password authentication. 

http: / / www.ietf. cnri.reston.va.us /htmlcharters / otp-charter.html 

■ IETF Working group on Public-Key Infrastructure (X.509) 

This Web site contains a general introduction to the IETF working group on Public-Key 
Infrastructure (X.509) 

http: / / www.ietf. cnri.reston.va.us /htmlcharters / pkix-charter.html 

■ IETF Working group on Securely Available Credentials 

This Web site contains a general introduction to the IETF working group on securely available 
credentials. 

http: / / www.ietf. cnri.reston.va.us /htmlcharters / sacred-charter.html 

■ IETF Working group on Secure Shell 

This Web site contains a general introduction to the IETF working group on secure shell. 

http: / / www.ietf. cnri.reston.va.us /htmlcharters / secsh-charter.html 
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■ IETF Working group on S/MIME Mail Security 

This Web site contains a general introduction to the IETF working group on S/MIME mail 
security. 

http: / / www.ietf.cnri.reston.va.us /html.charters / smime-charter.html 

■ IETF Working group on Secure Network Time Protocol 

This Web site contains a general introduction to the IETF working group on secure network 
protocol, 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / stime-charter.html 

■ IETF Working group on Security Issues in Network Event Logging 

This Web site contains a general introduction to the IETF working group on security issues 
in network event logging. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / syslog-charter.html 

■ IETF Working group on Transport Layer Security 

This W eb site contains a general introduction to the IETF working group on transport layer 
security. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / tls-charter.html 

■ IETF Working group on Web Transaction Security 

This Web site contains a general introduction to the IETF working group on Web transaction 
security. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / wts-charter.html 

■ IETF Working group on XML Digital Signatures 

This Web site provides a general introduction of XML digital signatures. 

http: / / www.ietf.cnri.reston.va.us /htmhcharters / xmldsig-charter.html 

■ Information about cryptology and encryption challenges 

This is the official Web site ol RSA Security (the organization that developed the RSA 
algorithm) and is an excellent source of information related to information security in general 
and cryptography in particular. In addition to security-related news, it contains information 
about RSA conferences and contains pointers to RSA products and services. 

http: / / www.rsa.com 

■ Information about prime numbers 

This page contains detailed links to information about prime numbers, 
http: / / www.utm.edu / research / primes / 
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■ Information about Secure Socket Layer (SSL) 

This site is maintained by Netscape Corporation and contains draft SSL 3.0 specifications. The 
Web page also contains links to additional information to aid implementation of SSL 3.0. 

http: / / www.netscape.com / eng/ ssl3 

■ Information on Certification and Public Key infrastructure 

This Web site of commercial vendors Entrust and V erisign contains good information related 
to Internet security, certification, and public key infrastructure. 

http:/ /www.entrust.com 
http:/ /verisign.com 

■ Information on IBM's Remote Access Control Facility 

This site contains information about IBM’s Remote Control Access Control Facility (RACF) 
Software. This software is available for both the OS/390 and Z/OS operating systems. This 
site contains links to a PDF file OS/ 390 Security Server Introduction, a good source of information 
related to access control in operating systems. 

http: / / www- 1 .ibm.com / servers / eserver / zseries / zos / racf / 

■ Information on Microsoft's Security 

This is the Microsoft Web site related to security. It contains links to important resources for 
security developers, security bulletins, and security-related columns. 

http: / / microsoft.com /security 

■ Information on Multics 

This Web site is a good source of information about the Multics operating system. In addition 
to containing a list of documents related to Multics, it contains a history of Multics, and the 
name and links to Web pages of people who contributed to Multics. There are 1411 names, 
510 mail addresses, 109 home pages. It also contains links to a collection of 15 select technical 
papers about Multics. 

http: / / www.multicians.org/ multics.html 

■ Information on Internet Protocol Version 6 (IPv6) 

These Web site provides general information on IPv6, including IPv6 specifications and the 
latest news and links, 

http: / / www.ipv6.org/ 

Another good source for information on IPv6 is the Sun Microsystems site at 

http: / / playground.sun.com /pub / ipng/html / ipng-main.html 
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■ Information related to Public Key Infrastructure 

This page contains links to various sites and documents, related to Public Key Infrastructure 
(PKI) and extensive links to Certification Authorities (CAs) licensed by various agencies. An 
excellent source of information related to CAs. 

http:/ / www.pki-page.org/ 

■ Information Security Forum 

This Web site is maintained by Information Security Forum (previously known as European 
Security Forum). The Information Security Forum meets the demand for business-based so- 
lutions to information security problems. 

http: / / www.securityforum.org 

■ Information Systems Security Association 

The Web site of the Information Systems Security Association (ISSA), a nonprofit interna- 
tional organization of information security professionals and practitioners, provides education 
forums, publications, and peer-interaction opportunities. 

http: / / www.issa-intl.org/ 

■ Information Security Solutions Europe 

This Web site is maintained by the European Forum for Electronic Business. The link below 
is of the Information Security Solutions Europe (ISSE) conference, which presents the latest 
developments and concerns for IT Security, including Encryption, Data Protection, Biometrics, 
Business Models for Trusted Services, Risk Management, PKI, Smart Cards, Digital Signatures, 
Legal Issues. 

http: / / www.eema.org/ isse/ 

■ INFOSEC publication, European Commission 

This site is published by INFOSEC, DG Information Society of the European Commission, 
and contains detailed information and links related to European Trust Services (ETS) and 
various other reports. The site also contains common criteria (now an international standard 
IS 15408), which supersedes Information Technology Security Evaluation Criteria (ITSEC). 
In addition, a report of a recent evaluation of ETS is also available at 

http: / / www.cordis.lu / infosec / src / ets.htm. 
http: / / www.cordis.lu / infosec /home.html 

■ Infosyssec, The security portal for Information System Security Professionals 

An excellent resource on information security. This Web site contains links to security-related 
standards, reports, general interest articles, and many other resources. 

www.infosyssec.net / infosyssec / secstan I .htm 
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■ Institute of Information Security 

This Web site is maintained by the Institute of Information Security and provides a forum 
to discuss security-related issues and links to extensive resources, newsletters, education, and 
archives. 

http:/ /www.instis.com/ 

■ International Association for Cryptologic Research 

The official Web site of the International Association for Cryptologic Research (IACR), this 
site contains information about IACR publications, conferences, membership, etc. 

http:/ /www.iacr.org/~iacr/ 

■ (The) International PGP Home Page 

This Web site is maintained for the promotion of PGP use and has many mirror sites around 
the world. A very good source for documentation, download, FAQ, Internet links, language, 
products, and services related to PGP, 

http:/ /www.pgpi.org/ 

■ International Organization for Standardization 

The official site of the International Organization for Standardization (ISO), this site contains 
detailed history and news about IS09000, and other important information. 

http:/ /www.iso.ch/ 

■ International Telecommunication Union 

This is the home page of the International Telecommunication Union (ITU) and contains 
links and information related to telecommunication technology, regulations and standards 
information. Publications can be purchased through the ITU Publications Online subscription 
service. 

http: / / www.itu.int /home / index.html 

■ Internet Research Task Force 

The home page of the Internet Research Task Force (IRTF) provides an overview of IRTF 
and links to the Internet Engineering Task Force (IETF) and Internet Society (ISOC). The 
IRTF is managed by the IRTF Chair in consultation with the Internet Research Steering 
Group (IRSG). 

http: / / www.irtf.org/ 

■ Introduction to Cryptographic Standards 

This site is a pointer to an article by Richard Ankney that introduces cryptographic standards. 

http: / / chacs.nrl.navy.mil / ieee /cipher / standards /cipher-crypto-stds.html 
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■ Introduction to Elliptic Curve Cryptography 

This Web site is maintained by Integrated Sciences Incorporated, and the page (see the address 
below) contains an excellent (though general) introduction to elliptic curve cryptography. The 
concepts are explained with graphs, and the site also contains links to research papers and other 
sources related to password verification, 

http: / / world.std.com / ~ dp j/ elliptic.html 

■ Java Cryptography Architecture 

This server is maintained by Sun Microsystems and contains detailed technical information on 
Java cryptography architecture, API specifications, and reference. 

http: / /java.sun.com / products /jdk/ 1 . 1 /docs/ guide / security / CryptoSpec.html 

■ Keyed hash functions for message authentication 

The site for IBM research contains pointers to some excellent papers, A list of papers related 
to keyed hash functions for message authentication are available at 

http: / / www.research.ibm.com / security /keyed-md5.html. 

■ List of all RFCs 

This site is the IETF repository for Internet Requests for Comments (RFCs). The RFCs can 
be obtained by RFC number. The site also contains a complete index of RFCs. The site itself 
does not have an index or search feature, but these features are available at the RFC Editor 
Web page. 

http:/ /ietf.org/rfc.html 

■ National Institute of Standards and Technology (NIST) 

This site contains information about a variety of computer security issues, products, and 
research of concern to federal agencies, industry, and users. This site is run and maintained by 
NISTs Computer Security Division as a service to the computer security and IT community. 

http: / / csrc.ncsl.nist.gov / 

■ National Cryptologic Museum 

This is the official Web site of the National Cryptologic Museum and is maintained by the 
National Security Agency. 

http: / / www.nsa.gov / museum / 

■ National Security Agency 

This is the official Web site of the U.S. National Security Agency (NSA). 

http:/ /www.nsa.gov 
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■ National Security Institute's Security Resource Net 

The National Security Institute’s Web site is an excellent resource for Internet security. This 
site contains industry and product news, computer alerts, travel advisories, a calendar of events, 
a directory of products and services, and access to an extensive virtual security library. 

http:/ /nsi.org/ 

■ Navy's Center for High Assurance Computing Systems 

This is the home page of the Center for High Assurance Computer Systems, within the 
Information Technology Division of the Naval Research Laboratory. The Center for High 
Assurance Computing Systems conducts interdisciplinary research and development in security- 
related systems. This site contains links to government and security-related Web servers; of 
particular interest are downloadable copies of High Assurance Workshop Reports. 

http: / / chacs.nrl.navy.mil / main_fra.html. 

■ NIST's Advanced Encryption Standard (AES) Development Effort 

This Web site contains a Draft Federal Information Processing Standard (FIPS) for the AES 
for public review and comment. The site also contains important links including links to pages 
for public comments to the Rijndael (AES) algorithm, an AES discussion forum, and archived 
AES home pages. 

http: / / csrc.nist.gov / encryption / aes / 

■ NIST's Computer Security Publications 

This is an excellent site that contains links to the NIST computer security resources clearing- 
house Web server, Rainbow series publications, FIPS, special publications, interagency reports, 
ITL bulletins, POSIX, and other miscellaneous resources. 

http: / / csrc.ncsl.nist.gov / publications.html 

■ PKCS set of documents 

The Web site of RSA Security contains documents PKCS#1 through PKCS#1 1 for download. 
Here is a list of document names and the corresponding URL. 

ftp: / / ftp.rsa.com /pub/ pkcs /ps/ 

■ PKCS # 1 : RSA Encryption and Signature 

This Web site contains an introduction to the RSA encryption standard, 
ftp: / / ftp.rsa.com /pub/ pkcs /ps/ pkcs- 1 .ps 

■ PKCS #3: Diffie-Hellman Key Agreement 

Introduction to the Diffie— Heilman key agreement standard. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs-3.ps 
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■ PKCS #5: Password-based Encryption 

Introduction to password-based encryption standards. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs-5.ps 

■ PKCS #6: Extended Certificate Syntax 

Introduction to extended certificate syntax standards. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs-6.ps 

■ PKCS #7: Cryptographic Message Syntax 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs-7.ps 

■ PKCS #8: Private Key Information Syntax 

Introduction to private key information syntax. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs-8.ps 

■ PKCS #9: Selected Attribute Syntaxes 

Introduction to selected attribute syntaxes. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs-9.ps 

■ PKCS #10: Certificate Request Syntax 

Introduction to certificate request syntax. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs- 1 0.ps 

■ PKCS #11: Abstract Token Interface API 

Introduction to abstract token interface API. 

ftp: / / ftp.rsa.com / pub / pkcs /ps/ pkcs- 1 1 .ps 

■ Quantum Cryptography 

This paper by Gilles Brassard, of McGill University, provides an extensive annotated bibli- 
ography of papers on quantum cryptography and related topics. 

http: / / www.cs.mcgill.ca / ~ crepeau / CRYPT O /Biblio-QC.html 

■ Rainbow Series Library 

This W eb site contains a listing and links to the documents in the Rainbow series. Documents 
are available in text, postscript, and PDF format. It also contains a postscript gzip archive. 

www.radium.ncsc.mil / tpep /library / rainbow / 

■ Resource for Computer Threat and Vulnerability 

This site is maintained by Internet Security Systems and contains excellent information and 
literature about computer threats and vulnerabilities, news about latest vulnerabilities, patches, 
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and other information. The security alerts and virtual library are extensive and useful. The 
search options on the main page provide capabilities to search by product, platform, and 
months. 

http: / / xforce.iss.net / 

■ Resource on Mac-Crypto (Macintosh Cryptography) 

This Web site provides Macintosh Crypto Web resources and contains links to past crypto 
conferences of 2001, 1998, 1997, 1996. 

http: / / www.vmeng.com / me / 

■ SANS Institute 

This is the Web site of the SANS (System Administration, Networking, and Security) Institute, 
a cooperative research and training organization. It contains excellent resources related to 
Internet security. 

http:/ /www. sans.org/ 

■ Secure Electronic Marketplace for Europe 

This Web site is maintained by Secure Electronic Marketplace for Europe (SEMPER) and the 
Web site http://www.semper.org/sirene/ maintained by SIRENE (SIcherheit in REchner- 
NEtzen / Security in Computer Networks) and an excellent source of information and standards 
in computer network security. SIRENE is a loosely collaborating group of researchers from 
different organizations with a common interest in security and privacy. Information on electronic 
commerce, payment systems, and security is available at 

http: / / www.semper.org/sirene / outsideworld / ecommerce.html#syst 
http: / / www.semper.org/ 

■ Security-related news and information 

This site is an on-line news service organized by SC Magazine and a global security portal. 
Key links associated with a reported news item direct the reader to further relevant sources of 
information. 

http: / / www.infosecnews.com / 

■ Simple Key management for Internet Protocols (SKIP) 

This Web site contains information about SKIP: Simple Key management for Internet Pro- 
tocols, including technical specifications, the latest news and items about SKIP, interoperati- 
bility testing, and technical papers. 

http: / / skip.incog.com / 
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■ Software Industry Issues: Digital Signatures 

This Web site is maintained by Software Industry organization. The URL of the page given 
below contains comprehensive information about digital signature laws, reference material, 
commercial sites, vendor CPSs, and other encryption and privacy information. 

http: / / www.softwareindustry.org/issues / 1 digsig.html#sl 

■ SRI technical report on UNIX security 

This site contains the Stanford Research Institute (SRI) report “Improving the Security of 
Y our UNIX System” by David A. Curry. The report has some very useful information related 
to security of UNIX systems. 

www.sri.ucl.ac.be / SRI / documents / unix-secure 

■ The IETF Security Area 

This Web page represents the security area of the IETF, This page contains links to Security 
Area Working Group Web pages and other status information related to security. 

http: / / web.mit.edu / network / ietf /sa/ 

■ The UK ITSEC scheme 

This is the official Web site of the UK Information Technology Security Evaluation & Cer- 
tification Scheme and contains a good description of assurance levels for software products 
and guidelines in achieving them. The site also has a list of certified products, a collection 
documents, and latest news releases. 

http: / / www.itsec.gov.uk / 

■ Theory and practice related to random number generation 

This server is maintained by a team of mathematicians and computer scientists led by Peter 
Hellekalek at the University of Salzburg’s mathematics department and contains links to tests, 
literature, news, and software related to random number generation. 

http: / / random.mat.sbg.ac.at / 

■ Useful Resources on ASN.l 

This Web site maintained by OSS Nokalava, a New Jersey, USA-based company, contains 
excellent information about ASN.l including questions and answers, glossary, and reference 
books, 

http:/ /www.oss.com/asnl /index.html 

■ U.S. federal guidelines for searching and seizing computers 

This site is maintained by EPIC and contains U.S. federal guidelines for searching and seizing 
computers. EPIC has made an analysis of this document, available from http:/ / cpsr.org 
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/ cpsr/privacy/ epic/ guidelines_analysis.txt. A printed version appears in the Bureau of Na- 
tional Affairs publication Criminal Law Reporter ■ Vol. 56, No. 12 (December 21, 1994), 

http: / / www.epic.org/ security / computer_search_guidelines.txt 

■ Virus Bulletin 

This is the home page of the Virus Bulletin and contains information on developments in the 
field of computer viruses and antivirus products. 

http: / / www.virusbtn.com / 

■ Web site of Internet Engineering Task Force 

This is the official Web site of the Internet Engineering Task Force (IETF). It contains a host 
of information related to IETF purpose and mission, activities, working groups, etc. In addition 
it contains links to Internet drafts and Internet Request for Comments. 

http: / / www.ietf.org 

■ Workshop on Selected Areas in Cryptography (SAC) 

This Web site contains information on workshops on Selected Areas in Cryptography (SAC) 
and has links and papers of SAC ’99 through SAC ’94. 

http: / / adonis.ee.queensu.ca: 8000 / sac / 

■ World Wide Web Consortium 

The official site of World Wide Web Consortium (W3C) contains W3C news and links 
to information about W3C technologies. W3C develops specifications, guidelines, software, 
and tools to use the full potential of the Web for infomiation, commerce, communication, and 
collective understanding. An excellent site to keep up to date related to Web standards and 
technologies. 
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W hy add a bibliography to a dictionary? Internet security is passing 
from its adolescence to adulthood. Its literature is rich and is 
growing every day. The goal of preparing this bibliography is to 
stress the importance of some excellent references available as books, techni- 
cal reports, research papers, and government documents. A separate list pro- 
vides published standards and RFCs. 

This bibliography does not document the evolutionary or historical record 
of Internet security; it is also not an attempt to cite the works of established 
researchers or specific organizations. Several of these documents were refer- 
enced while I formulated the most appropriate description of a term. For any- 
thing that was unclear I consulted with the experts on the Technical Advisory 
Committee to come up with the final description. Some valuable references 
may not be explicitly cited in the description of terms, but these are listed in 
the bibliography due to their relevance and inherent importance to the field 
of Internet security. An interested reader should scan through these titles for 
references of interest. 
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